#👥・help-me

I’m the arch pro

Need script to bypass cloadflare

we don't help with potentially illegal/unethical activities #📜・rules

bro

still trying ts

💔

obsessed so much with cf he’d make a bounty program of his own

whats your problem opsec

?

dms

Hello everyone 👋

I'm currently learning cybersecurity and have completed most of the free TryHackMe rooms, including some Red Teaming paths.

The problem I'm facing is that I've hit a steep learning curve. I'm very interested in Red Teaming, but after finishing the basics, I'm confused about what the next step should be.

❓ My questions:

• After TryHackMe free rooms, what resources or labs should a beginner focus on to get deeper into Red Teaming?
• Should I first focus on Active Directory labs, or directly dive into offensive tooling like Cobalt Strike, Covenant, etc.?
• Any recommended roadmap or practice labs for beginners who love Red Teaming?

Any guidance would mean a lot. Thanks in advance 🙏

can you post your Tryhackme profile first, no way to know what you’ve completed and what you’ve skipped

can someone help me to understand python and learn it better bc im stuck at some point i where learning bash and css but i want to learn python so can someone help me maybe?

some explains and a starti can take

https://www.learnpython.org/
https://www.w3schools.com/python/

i try that but im stuck and suck idk maybe im to dumb idk

i cant move on

nah, it'll just take a bit
you're all good for being stuck at something

it happens a lot in here and there's no shame in that

what are you stuck on specifically?

yeah but idk how where and when to start how to move on and how to really learn it bc im learning but dont undertand it

what's your end goal?

like idk when do i place import or when i write some else idk what do i need to do

to learn python and build some security tools (for ethical reasons)

import is used to have certain libraries or programs linked into your program specifically

like an own voicechanger to troll friends or like an toolkit

is so that you can use the imported things in your code

ohhhh

oh that ain't security lmao

but either way

you gotta first learn the basics of it before

nuh its just and example but not that things exacly

so tools and some code to build an own discord bot just for fun and for helping others

but im stuck at some points and dont understand some things

just research, the sources i gave you are more than enough to begin to understand python

anything that you do not understand can simply be googled

it also seems like you're going all over the place, a code structure is initiated once you understand what every puzzle piece is used for

and from as far as i had seen you do not yet

so keep on learning

before you code

ok, thanks so much 🙏

move on from what

are you stuck on a certain part?

wdym?

you said you can’t move on

.

what points?

or you can pick a tutorial from youtube if you don't understand docs and start coding it, and keep doing practice sets.

python is the easiest language to learn, you just have to code it everyday you gotta do it everyday and that's the hardest part but it gets easier, everyday it gets a little easier

the code self like def or function and more so fr how to start to move on and what to do

i recently learnt Python so...

that’s just syntax, if its easier you can try watching the Harvard CS50 course

also ChatGPT is surprisingly not too bad at answering questions you’d ask to clarify

ok i will try to improve 🫶

best of luck!

python is hella useful

Im trying to get the flag from THM its the linux fundamentals room but it's confusing on getting it

ty🙏

how lonng has it been since you're learning Python?

2 months ago ig

but not constant

learning 3 weeks now constant

@spiral notch hey wasup, can you please read your dm and help me...

but still stuck at variables and thoes

ya sure

just keep doing it and believe me you will eventually be so good at it. it's just about time

but yeah again you gotta do it everyday, doesn't matter if it's for 1 hour or maybe even 30 minuts

ok i understand, i will stay constant

thanls y'll

ofc

best of luck :3

ty 😁

glhf

someone want to tell me why its showing blank in burp http history after i configured all the proxy shi and even installed the certificate

A question, im asking in here, because chat ignores me

When would someone use HTTPS?

So no one can ready your traffic?

HTTPS is the default and should always be used.

So, it protects you from people trying to take your data?

alr, interesting

It prevents someone to read data as plaintext in transit.

and generally, do all wbesites use this?

yes

ty, i found that interesting

yes

hello guys soo during a pentesting exercise, the goal is to find six flags. So far, I successfully retrieved FLAG1: curl http://ip/todo.txt TODO: - I've just finished to implement the JWT, can someone take a look on how secure it is please ? FLAG1{a5d4ca6965d7b37f0b12a6dbaf694fa4} I believe this could serve as a hint for locating FLAG2. Up to now, I have tested several techniques and commands, including Harvester, GoBuster, and various JWT manipulations, to explore potential paths for the remaining flags but whitout sucess

can you help me please its important

https://tenor.com/view/puss-in-boots-cat-cute-kitty-begging-gif-204103653485036782

try feroxbuster

what ctf is it btw?

is it an active one?

its for a job project interview

and yes its an active one

i have tried ferox

i know this is dumb question but anyone able to help me set up a game server keep runnin g into issues trying to get it to run

We would need to know the name of the game and the error.

a few weeks ago i cleaned the fans of my laptop but forgot to discharge the power the next thing i know my games or anything anything demanding is not working, my gpu temps are reaching 90 Celsius , probably thermal throttling, anyone know how to fix it

its arma reforger and its linux gsm ubuntu and its saying noo file in direcotory but there is

im a kinaesthetic learner so trying to learn linux and run myh own game server at the same time from a spare laptop i have running

@crisp star

Someone wanna help me transform my laptop to a parrot os

what OS are you on

It's a windows Laptop

so you're using windows?

I'm going to Barns and Noble

do you want to run it bare metal or in a virtual machine?

wat

Bare metal

I don't want the other os

then you would first wanat to install parrot OS from their websites

then use a software called rufus to burn taht file on a usb stich and make that usb bootable

I chose rufus because it have a gui and it's beginner friendly

then when you do that tag me and I'll tell you what to do nextx (you just go to the bios and boot to the new usb to install parrot)

Rufus has issues

with Parrot + Kali appairently

unless you use DD mode

Etcher also works

Rufus is great for windows though 👍

oh really? I've never used rufus only dd cause I'm amlways in debian

I just said rufus cause of many people recommand it

Original convo here if you want more info #👥・help-me message

thanks

Sorry, this is probably a better one to go to #👥・help-me message

thanks. the "but it works on my machine" is a coder's worst nightmare

yeah. DD is DD. So thats why we don't really have issues on linux or mac.

i just got burp suite to work

but the problem is i cant get the api

because of ssl pinning

Ask your friend for the SSL

do you guys think i did a good job

for someone like me

No

a beginner

so ican finally sleep

and get some rest

You learned how to turn a crane on, but have no idea of how it functions

why are you always trying to get on my negative side

After you get a good nights rest, please look into practicing Burp internally with your own stuff, so you can understand how it works before you work with more complex stuff

Because its going to get more frustrating for you, and you keep spamming this server with questions on how to do each individual step.

Take it slower, understand how the tools work.

i dont understand why someone so hard to support someone who just starts learning

Because the answer to all your questions is in their basic doucmentation
https://portswigger.net/burp/documentation/desktop/getting-started

Except for maybe the android-based things.

It seems like #👥・help-me message

I will block you rather than keep responding now.

Hopefully your journey goes well

im sorry if i didnt see that okay, but pls try to say it in a positive words. i havent got a good night sleep and i dont want to be more irrtated with it

its been 2 days since i sleep

You should see a doctor

https://tenor.com/view/dr-house-house-gif-11916099077674228393

or

https://tenor.com/view/donna-noble-poke-tenth-doctor-doctor-who-ten-gif-12510429884032354522

doctor shaun murphy on top

hallo any one good with payment programing ?

you can't handle payments by your own

it's illegal

I mean it's not illegal

but storing or transmitting them incorrectly can break laws like PCI-DSS

@tepid laurel

so be careful lol

rix:~/armareforger$ ls
serverfileswhy does it keep deleting files

https://tenor.com/view/kaiba-nightking-gif-9539406

what

i know bro its illegal 😄

tryin to set up game server but keep running into an issue

Can someone help me figure out how to change the background on kali ?

Right click on the desktop.

Ok

Did that

no way

lmao

Well he's gonna figure it out on his own now.

Else there is always google.

@sleek totem just read all of the options in settings lol

or even faster, LLM

depends which llm he’s using

if somone could please help im on arch rn in terminal what im trying to do is connect to my wifi anyway i type iwctl and then say known-networks list and mine pops up then i type station wlan0 connect to my network and then i run known-networks list and it says last connected when i typed station wlan0 connect so it connects basically but i still just dont have it sorry this probally sounds confussing

So you’re connected but still can’t access the internet?

Sounds like IP address problem

Use dhcp to get pne

sudo dhcpcd wlan0

And also make dire your card is really named wlan0 cause when I last time used arch it wasn’t named wlan0 even tho in debian it was named wlan0

@versed pagoda

?

hey sup can u guys help me make my iphone 13 more secure?

agent007 r u an admin?

You already have a good security by default since iphone13 use tcpwrapp to disguise serviced running on ports and also it doesn’t allow to install third party apps

So in the hardware and software level you’re good

well i might have been hacked trough third party apps such as telegram

also agent007 r u an admin

have u seen my previous message?

i am a quasi famous rapper

lots of beef with the establishment

due to my ancestry and other factors

First, Third party mean things you installed from something else than the app store. Second, are you talking about your telegram account or your phone, because these are two whole different things

I’m not

both

account i mean

telegram the app

Is it your account that’s been stolen ?

I am a direct blood line decendant to the memphis mesuid Free Masons

not masons not freemasons

Free Mason

Then it’s the user fault lol, that’s why you should have a protected password and all those prevention rules

lots of people want me killed

🤣

lol

its so fuckedup its actualy hilarious if u knew da half of it

i use mcaffe vpn

Most of it you’ve heard it online. Use a strong password, use a password manager and don’t recycle your password over different apps

well the iphone actually can generate strong passwords

and has face id

yet still

idk how many agencies

also

palantier

tat fuckshit

But it’s bad for convenience because if you switch to another phone you’ll loose them

true

dude if u only knew how crazy how deep da rabbit hole i am

u like rap? u got spotfiy?
da german feds scrapped my catalogue from youtube and 2/3 of it is gone from all platforms

since law enforcement protects the integrity of freemasonic secrecy

and im pushing those buttons hard

since i dnt wna do any i l lu mi nati fuckshit n cant be compromised

First no I don’t have spotify and I don’t like rap, I like metal and rock

And second

ok

ARE YOU HIGH XD

lol

ironicaly

not

im in a clinic detoxing

for various reasons

yeah

My badd agent for the late response holdup ima read this

Yea probably Ip address

I dont dhcdp installed

or wtv

let me c though

You’re fine just try the command

il run it

cmd not found

i dont have dhcpcd knew that wouldnt work

But I think dhcpcd is installed by default on arch

You’re on arch right?

Ig not for mine

yep

Do this:

pacman -Qs dhcpcd

i dont think i clicked any network boxs and stuff though

What’s the output

nothing

happends

If it show a package then it’s installed

Yea it’s not installed

just starts a new cmd line

yeah

You can install it using pacman using this command:

sudo pacman -S dhcpcd

And then when it finish installing just ask the dhcp server using:

sudo dhcpcd wlan0

I just ran both

Arr you using arch desktop version or the bare arch terminal?

first one said abunch of stuff

but at the end

said errors occured

cmd not found

which im sure its cause i have no wifi

then the second command

said cmd not found

cs it didnt install

oooooh yea my bad I forgot lol pacman uses a repo

xd

i don't think it is. Its on the ISO maybe?

ur good

Uea cause pacman use the arch repo

So you need wifi

ye

been on this for 2 days i might just go back in the arch install and reinstall to mess with the network settings

Waiy

think i just speedran

alright

Let’s try something else

You’ll get an ip address manually then after getting it use dhcp

xd

Do you know your router’s ip address?

Most of the time it’s 192.168.0.1

Or .1.1

Nope

but im typing from my pc rn agent

its connected to ethernet

so i can run smth in windows terminal

and get it

idk

if thatd

do something

ipconfig /all would show your i think "Gateway" or whatever they call it

But are you sure you don’t have dhcpcd? Cause it’s by default in arch

yes im sure

I think ltest versions use ip a

They got rid of ipconfig

alr

he is on a windows computer talking to us

i ran that

and got it

Oh nvm I red it « ifconfif »

What is it

So first you would want to bring your wifi card

sudo ip link set wlan0 up

If it’s called wlan0

Just try it and see if it works

done

Then you would want to manually assigne an ip address, and to not get an ip address confusion or collision just take a unusual IP address, try this

sudo ip addr add 192.168.0.100/24 dev wlan0

If you do this now you should be connected and have access to the internet (but still not browser cause you still need DNS) .

Just to be sure when doing that last command try pinging 8.8.8.8

Ping -c 4 8.8.8.8

i did that and it said network is unreachable

😭

Are you sure your wifi card is called wlan0?

might js reinstall arch atp lmao

im pretty sure

And are you sure you are already connected to your router?

ye

nvm

When you do the command « ip link » what does it say?

@versed pagoda

Or ip a

i see

Whatever

1: lo:

im doing the comand

i was typuing

mb

Lo is for ethernet I think not wifi card

What is the last one, cause last one is usually the wifi card

1: lo: loopback and abunch of paragraph

2: eno1 braodcast

4:wlan0: braodcast

wlan0

Yes so wlan0

Eeerm second are you sure you’re already connected to the wifi?

yes

i go in settings

and check

and then i open up web

Wait no first verify if your card is up using

and type smth

ip link show wlan0

kk

Then what does it say?

THE WEB WON’t WORK CAUSE YOU DO NOT HAVE DNS (for now)

it says what it said when i ran ip link it shows braodcast multicast up lower up mtu qdisc noque stat up dormate group defualt qlen and then link etcher

What?

a paragraph pops up

i listed most of the things it said

Ok ok just reconnect from the beginning, just start iwctl using:

iwctl

alr

Then do « device list»

wlan0

Now scan the network:

station wlan0 scan

ok

And tell me what’s the name of the network you want to connect to

Or if you don’t want to tell here just do:

station wlan0 connect <the router’s name>

done

You did the last thing?

yes

Ok now just to verify do:

station wlan0 show

oh yeah

its connected

my dumbass

shows the ipv4 and ipv6

Which ipv4

192 one

🙂 I’ll explode, GIVE ME THE FULL IP

LMFAO

That’s just the beginning, and all of the things inside you lan use it

thats how i feel talking to chat gpt

1 second

Then don’t use arch for now, it is nor optimal for you. And also are you using arch on pyre terminal or the desktop version of arch?

desktop

Gnome

im not giving u my full ip thats bad opsec

to paranoid

Bruh then why won’t you use the gui to connect to wifi

Anyway

in the gui i cant

1 sec let me see and tell u what it says

Connect to DNS now:

echo "nameserver 8.8.8.8" | sudo tee /etc/resolv.conf

when i open the gui it says network unavaiable an error network cannot b used error details network manager not running

says invalid cmd

but i didnt type the |

is that why

How the hell is your netork manager now running lmfao 🤣 I’ve never seen that, but anyway turn it on then

sudo systemctl enable --now NetworkManager

invalid command

oh i havent exited out of iwctl

Well do it

🦆

This guy is unbearable 😭

failed to enable unit networkmaanager.servicer

does not exist

my bad yo i dont mean to be

Omfg

Just use iwctl, it bypass network manager anyway

Now run :

echo "nameserver 8.8.8.8" | sudo tee /etc/resolv.conf

And BE OUT OF IWCTL

XD

ALR

1 sec cant type w one hand on th is and the other on there

thatd b sick tho

I DID IT

Did it work

?

it says nameserver

I mean it’s just echo lol

then 8.8.8

yeah

i typed 3 eights

instead of 4

cant do nothing right

but it worked

….

now what

Thatns won’t work….

so retype?

You know what 8.8.8.8 is?

with 4 eights

googles

thing

dns

alr il rerun

Just do it again

And 8.8.8.8 this time

done

it worked

pratice makes perfect

Now to make sure it works ping it 4 times

im getting better

Ping -c 4 8.8.8.8

ok

OOOOOOOOO

we dosing google

im mr robot

https://tenor.com/view/100-gif-26246178

So?

Did you ping it

said

Were there packet lose

network is unstable

Omfg that’s it someole else help you. You don’t have dhcpcd even tho it come pre-installed on arch, we tried using iwctl to bypass networkManager not being up even tho it can’t be down unless you took it down, you do many mistakes while typing

Just read the arch documentation

It have everything you would need

i make mistakes on typing here

not in terminal

Should i just reinstall arch man

;(( im sorry dude

https://wiki.archlinux.org/title/Main_page

he done sent the wiki

Don’t use it, you don’t have the skills to yet

Use debian

but

i asked chat gpt

for the best os

and it said the security

and privacy

debian and mint have bad security and privacy or wtv

i think you should reinstall arch a couple of times in a row to get a feel of whats going on, then do something like a debian or CachyOS or something pre-done like that, so you can sit with sane defaults.

both security and privacy are better than windows defaults.

BRUH

ik then windows

but i want the best

even though

arch didnt have out of the box

u can have full control over it

With great power comes great responsibilities. And you can’t handle those responsibilities yet

I tried everything possible with you

And none work

I wanna say i use arch btw

thats also a plus

xd

Idk

welp time to download arch linux instalation again

for the second time

idek what i did the first

oh i forgot my password

LOL

You have as much control over the other ones

They are all the same in a way

but different

i get what you mean jeevis ur right

Thing is that. The objects he want to have control on, he don’t even know how to use them

I read it jarvis idk why

Right. So best someone else configures it in a sane way, and then he can learn it by touching and breaking it like we all do

me to lmao

i broke my own networking like an hour ago 🙃

moving my interface to a bridge

yeah

id learn

from trial and error

@versed pagoda THIS. And also to archives this install an arch derivative distro like manjaro

arch install script, i haven't used, i heard its pretty good.

but yeah, cachyOS will install arch for you, and make it feel like your installing any other distro

and will give you octopi so if you install packages through there, you are less likely to break your dependencies (if something doesn't work, update everything and try again)

But O think arch already have an option where you can install it in less than 5commands in terminal

Then you complete the rest in desktop version

alr

here we go

yeah, the script. I haven't used it, so I have no idea how it is.

reinstalling arch speedrun

good luck!

sure man

try with, without, try everything

see the differences in how things are done

check the auto-created configs, and see how its different than how you were doing it manually

Mental outlaw on youtube have a good tutorial on how to install it with the script @versed pagoda

ye

thats where i watched

dude

one time

i installed arch

and i put the boot loader

on grub

cause i just followed it exactly how he did

and i didnt even had grub XD

that was way worse t he the internet issue rn

so now that i think abt it ive downloaded arch like 4 times

One time, i saw there typing out the variablename from the wiki instead of my actual path to my EFI folder. I was stuck on that for a really long time.

alr while yall are still here let me go in the network configuration place first

so theres copy iso network config to installation
manual config
usenetworkmanager nessacry to configure internet graphically in gnome and kde plasma

ooo thats probally why

ima click on use network manager im pretty sure thats the right one

NetworkManager is one of the most common "Network managers" out there

its the easiest, especially if going for gnome

if using wifi, then NetworkManager uses iwd or wpa_supplicant.

so the script should auto-install the dependencies

you typically want Desktop if its for something with a GUI.

Minimal will drop you into a command line environment i think?

i think theres 100 different opinions on how you should partition your drives. If this is just for fun/testing, then it doesn't matter, and I would, later on, look into best practices for how the mounting works in linux.

For example, if I wanted my steam games on their own disk, I could just mount a disk to the folder where steam stores its games. Partitions work the same way, so it depends on the usage of the computer, if you want logs on their own partition, if you want docker on its own partition, if you want /home on its own partition, theres tons of different ways you can do it.

I say look into it later, because you can get stuck down a rabbit-hole of what to do for home vs server, what is secure vs insecure, and it may take a bunch of time to understand properly.

I agree

hello guys i have problem debuging my network monitoring and wanna run it via flask web, main functions are done in phyton, but whenever i try it to run, it just show dns query, nothin else i have been debuging it for almost like 2 weeks with chat gpt(i am prety new and most of these things i learnt via chat gpt), to put it in perspective, its running on rasberry pi5 and its making ap (preaty much evil twin) and via lan cable it does made a bridge (its for my home network)

What? What is the problem you have

flask dosent turn on

What command do you use to turn it on @fallen nacelle

And also what is that dns query?

print("[DEBUG] Spouštím Flask...")
socketio.run(app, host="0.0.0.0", port=5000, debug=True)

and i am asuming that dns query is just dns log itslef and that the problem cuz its the only thing that shows up in terminal

Hi, sorry if im a bit off topic, i wanted to ask if there is anyone who can help me regarding a private tiktok account that's constantly harassing, bullying and saying harmful things to my little sister and I'm trying to shut down or get access to the account to either get rid of it or find who it is so i can speak to them to stop this

I'd be very grateful if there's someone who can help me with this

Please I really need a laptop I’m from Nigeria and I really want to learn cybersecurity but my main challenge is a laptop my family could not afford but for me cos of the price it will really be a dream come true to get one thank y’all

@oblique forum Hey buddy. What's the account name of the private account.

My windows 11 laptop froze and then shut off and then the screen turned on and its been stuck on "Your device ran into a problem and needs to restart". With 0% complete for like 40 mins to an hour with the stop code being: CLOCK_WATCHDOG_TIMEOUT (0x101) idk what to do and I need help

hold on

The following debugger commands can be used to investigate the processor states, IRQL level, and code that is running, to attempt to determine which piece of code is not allowing forward execution.

!analyze

k, kb, kc, kd, kp, kP, kv (Display Stack Backtrace)

!pcr

!prcb

!irql

Parameter Description
1 Clock interrupt time-out interval, in nominal clock ticks.
2 0
3 The address of the processor control block (PRCB) for the unresponsive processor.
4 The index of the hung processor.

here's what caused it

Im not that experienced with coding stuff, I literally do not know what to do

first figure out what te problem is

hello my name is Vlad from new jersey,im new to this ill like to learn a about cyber security

Well I was playing a roblox game, and I opened voicemod and clicked a different voice filter when it froze and shutoff, this has never happened before so I'll guess that its number 3 or 4?

you probably overloaded your computer

I’d suggest disabling the watchdog timer in the BIOS or updating the BIOS sometimes the BIOS can get corrupted. If that doesn’t help, it could be another hardware issue.

This has never happened before but ok, how do I open the BIOS from this screen?

what model is your computer?

before anything tho, force restart your computer first and tell me what happens

HP Laptop-14 ep0792wm
I3

I've tried the power button and holding it, but all the things I found on Google on how to force restart were when their computers were on

Can I use a key combo?

and you were playing roblox on it? it would DEFINITELY do that 😭

Roblox works on it really fine

keep holding the power button for 30 seconds

Ok I held the power button for like 30 seconds idk why I didn't do that before but it worked

did it turn on?

Yes

is that a problem solved that i hear

Yeah

YAY

Should I still do the BIOS

no, not that importnant.. just monitor your CPU usage and temp

Alr ty

Yeah holding it down for longer kinda resets all the drivers and stuff in a roundabout way

Good for fixing weird issues like that

I always told clients to hold shift and power for 30s when they were having weird hardware issues and it actually worked a lot of the time, lol

@valid dove

yes, because i think it also preforms a mini change or fix, not sure tho

Basically ensures you get all the power out of all devices. Without getting too deep into it, it’s useful for fixing weird hardware issues like that.

It’s like the more powerful version of “did you try turning it off and back on”

yes exactly lmao

ffs...

it was awhile ago its not what it looks like

Don't worry about me, just silently judging

Hello community, i hope you all are doing alright. I have a question concerning my hacklab of three docker containers a bot container requesting a pdf using a token, a webserver hosting a pdf and the attacker. All in same subnet. I am trying to run mitm attack. I performed arpspoofing and packet sniffing using ettercap (in the attacker container i installed ettercap-text-only). now i am inspecting the captured file .pcap with wireshark. the arpspoofing i noticed is working but the packet sniffing. The SYN is not completing and i am not seeing any HTTP request or response. I wanted to send in the .pcap and my docker-compose.yml files here but i couldn't upload file. can someone help me here. I am using a custom bridge network.

#📜・rules

There is a option to turn DMs of in the discord so people can’t dm each other should be turned on as had several messages and none are getting a reply!

heyyy guys

im following NetworkChuck’s free CCNA course, and in episode 9 he uses Linode (a paid cloud hosting service) to run Linux. I don’t want to spend money, so Im stuck on how to get the same Linux environment for free.

☠️

need a roadmap for beginner on cybersec specialising in red teaming

#👥・new-member-guide

so what is the question?

Either run the environment locally, or look for any service that offers a trial period

I haven’t seen that course but when you say you want to run Linux, then do you want it on your local network or public?

If you just want a Linux on your network then you can try Virtual Machines

Linode is a service that provides cloud based VMS so you can access then from anywhere
But you can do the same thing locally with VMWare or VirtualBox

For obvious reasons you are unlikely to find anyone that lets you host kali for free

@honest crescent what's up man!?

Heyyyyyyy!!!
Nothing much! Just roaming around! Prep for OSCP! Doing things with some people
Barely getting time to sleep 🙂

Yo doese somone need help to learn hacking im tryna get helper role

I am exhausted!!!
Wish you well friend!

hey thanks man that helps a lot, thing is that im just getting started with this stuff soo don't be shocked if idk basic shit😂

DNS recursor - The recursor can be thought of as a librarian who is asked to go find a particular book somewhere in a library. The DNS recursor is a server designed to receive queries from client machines through applications such as web browsers. Typically the recursor is then responsible for making additional requests in order to satisfy the client’s DNS query.

Root nameserver - The root server is the first step in translating (resolving) human readable host names into IP addresses. It can be thought of like an index in a library that points to different racks of books - typically it serves as a reference to other more specific locations.

TLD nameserver - The top level domain server (TLD) can be thought of as a specific rack of books in a library. This nameserver is the next step in the search for a specific IP address, and it hosts the last portion of a hostname (In example.com, the TLD server is “com”).

Authoritative nameserver - This final nameserver can be thought of as a dictionary on a rack of books, in which a specific name can be translated into its definition. The authoritative nameserver is the last stop in the nameserver query. If the authoritative name server has access to the requested record, it will return the IP address for the requested hostname back to the DNS Recursor (the librarian) that made the initial request.```what does root nameserver do??

root ns translate names to ip

google.com to 8.8.8.8

A user types ‘example.com’ into a web browser and the query travels into the Internet and is received by a DNS recursive resolver.
The resolver then queries a DNS root nameserver (.).
The root server then responds to the resolver with the address of a Top Level Domain (TLD) DNS server (such as .com or .net), which stores the information for its domains. When searching for example.com, our request is pointed toward the .com TLD.
The resolver then makes a request to the .com TLD.
The TLD server then responds with the IP address of the domain’s nameserver, example.com.
Lastly, the recursive resolver sends a query to the domain’s nameserver.
The IP address for example.com is then returned to the resolver from the nameserver.
The DNS resolver then responds to the web browser with the IP address of the domain requested initially.
Once the 8 steps of the DNS lookup have returned the IP address for example.com, the browser is able to make the request for the web page:

The browser makes a HTTP request to the IP address.
The server at that IP returns the webpage to be rendered in the browser (step 10).```

you don’t need to remember everything unless you want to become a networking wizard. just basic information works

yeh ik i'm just curious

Hey guys,
I need help with something, so I am a student right, and yesterday we were applying for accommodation on the school online system, but unfortunately it closed and sadly I didn't manage to apply because the system was too congested, so the website was always on time out. Fast forward, while the system was still locked an unidentified student from my school claimed to be applying for people while the system was locked and it actually worked, he was indeed applying for other people. So my question is how did he do it ? And I wish to learn, if any of you guys know how.

that would be using it with unintended purposes/exploiting it

we cannot help you with this

Too bad. I appreciate you responding tho

Hey guys, I'm urgently looking for help getting my old Gmail account back, my phone was stolen about 3 years ago and they changed my passwords somehow, I really want to get my old gaming accounts back, anyone able to assist me? I'm from South Africa..

Or is it not possible?

@lone cobalt did you had security questions on the account?

Those questions like name of your first dog etc

No I didn't 😪

Did you had a linked account where they could had sent you your password reset ?

I had no linked account, I was very uneducated with that kind of thing when I had that account, if only I knew what I know now.. the only thing I have is the name of the Gmail account and the password I last used, the SIM card linked to the account was in the phone when they stole it.

Then you can only contact support and ask them

There’s nothing we can do as there’s no more legal ways to get it back

Ok, thank you 🙏

I'm new here, new to Discord platform where do I start learning cyber security on here?

#👥・new-member-guide

Hey guys, just got a cool webiste that helps you with HTTP status codes, feel free to check it out: https://http.cat

Nice. Mozilla also has their official docs for them too.
My favorite HTTP response code is 418.

lol, "Im a teapot"

Yep. Official RFC for it too.
https://datatracker.ietf.org/doc/html/rfc2324

Hey guys
Please I wanna know how to do recon well...I'm stuck at it

I wanna practice on oscp course

Buy the course. That's all you need.

broke

i mean like ctfs

CTFS are not going to be helpfull when you want to do the OSCP.

What's better dual boot or VM? Cuz i have only one disk so idk if dual boot Is good idea

a VM would be better

Imo a VM with GPU passthrough and 2 monitors, 1 for the igpu(linux), and 1 for the dgpu(windows) if you really need to use windows.

If you really want to dual boot, separate disks, and unplug or disable in bios the one you aren't installing onto, then re-enable both when both OSes are installed. Then use the Boot menu to choose what disk to boot to.

plus if you mess things up you can jsut restart it

VM if your machine has minimum requirements specified for VM if not then just dual boot it

well

it depends

check the last pin in this channel

Haven't called the Doctor in a while to see if everything is going excellent

"The Doctor"

Thanks y'all, i looked at the pin but i am still not sure but the problem Is i am not gone be running it on pc or laptop but handheld since Its small powerful And i can take it anywhere the problem Is i play games when i have some free time

And since Asus have his custom apps to run thing properly i am not sure if i wanna mess with dual boot

Primary OS is Windows or Linux?

Windows

Then VM is fine or even using live OS is fine

Yeah when i read the pin i tought live os should be good idea too

Yea live os works great and it's flexible too

Alr thanks i will probebly use live USB thanks y'all

Nothing to be shocked about! I was you 8 years ago
I literally wasn’t even knowing about RAM

neither am i😂

jk

ASU’s

asus

arch Linux has good compatibility

I've Completed Overthewire -> Bandit Levels & CCNA (Certificate)

Now, I'm thinking about going for Security+ & eJPT Certificates. (Currently learning from Security INE)

As well as i'm thinking about to start THM & HTB
I don't know whether im currently going in right direction or not.

Also, Im not that great into coding but able to code bit by bit some small programs in cpp, c# & python. (Learning JS & PHP currently)

I’m looking at making a bot that tracks other peoples trades in the stock market & copy’s them with minimal interaction from myself, I have next to no coding experience- What coding languages would be recommended for this project?

I already know I’ll have to learn from the ground up- But I don’t want to waste time learning unnecessary coding languages / techniques

a bot like a discord bot?

or what type

To be honest I have no idea on what type of “bot”, The idea is to have it be a script or program that runs on its own (whether It’s hard coded and just runs in the background using something like studio visual code or on a server from a hosting service)

I most likely wouldn’t want to link it to discord though- Potentially like a log via webhooks where it could track trades and errors but that’d be the maximum connection I’d want with discord

ahhh i see, thought you’d want to make it interactive with discord for some reason

well then, Python should be your go-to

Nah that’d be kinda redundant, Unless I’m mistaken and there’d be a reason to do so

really good for bypassing bot protections, automating things, and scraping correct data

also really good for data handling

Bet, I know alittle about python but very little

Is there any courses or classes that you’d recommend?- If not it’s okay I don’t mind searching the internet and finding some

also.. much respect for asking a good question. I get so annoyed when people come into this chat asking to do things for them and thinking others will do all the work for them

then they get mad when people tell them to go to hell or charge money for it

hmmm good question

I really often recommend 1 particular course but I’ll check through the materials again to see which one is the best imo

I’ll go quickly have some dinner and I ll give you a reply in 10-15 mins

Thank you!, I appreciate you looking into it for me!

It’s absolutely ridiculous that anyone would ask for a service and be surprised when there’s a charge… information sure but for a actual action should always be paid

++

completely agree

had a kid asking me to help him code a Fortnite tracker viewer bot

basically just bringing more fake “views” onto his account so people think he’s famous

Wild

at first asked how to make it worked, then started showing his high ass ego and being like “ez” without understanding what 429 means

-# too many requests btw

then wondered why he’s getting blocked by the anti bot protections while not even using anything dynamic like a web crawler which simulates human like behaviour

then got all of his proxies reputation ruined and begged me for my proxies

I don’t know much about the internal lingo, But to act like you know something without even knowing the foundation is crazy

(Mind you I use proxies with very specific high reputation points to perform certain offensive operations against my company, in simplified terms just work in cybersecurity, the attacking side of it)

🥹 someone can help this little kid

and then he’s like “bro you could make a lot of money from this” like idfc lol I make 6 figs I don’t need 20 dollars from a view bot he’ll sell on his little discord server

Yeahhh

Yea idk people are weird sometimes, the market for that is limited too

Wouldn’t make more than 500/mo most likely

Still good to have as passive but still

Any opinion here? @spiral notch

I have no idea what half of it means but it sounds like he could be heading in a solid direction to me

direction for what

what are you trying to get into in cybersecurity

Valid question

Kinda hard to answer him without knowing that lol

you did some certs, from different fields

Basically I was trying to get into Defensive protection.

blue teaming*

Yes.

But also wants to deep dive into red teaming too

choose one lol

you’re underestimating how large this field is

I agree with you. It's not possible to do both fields. If I've to consider one, I will go with blue teaming.

I've just took admission into university and just doing random things. Not like have any precise goal or aim currently

like not to ego trip or anything, my team was mentioned on the news for anti war cyber interventions and just hacktivism, and there are still younger people than me that know way more and have a way bigger potential, and I haven’t unlocked more than 50% ish of the field

Well that’s an issue,If you don’t know where you want to go it’s damn near impossible to plan what you gotta learn

alrighty

ccna kinda helps

you went overkill with that one but whatever

It was recommended by one of a senior.

sec+ is easy asf, I was ready for it by like 14, if you’ve passed CCNA your understanding of just computing and networking will be more than enough

Oh!

Ive aim for 1 company CheckPoint with roles like network security engineer & Cyber Threat Researcher

My university will offer Comptia 2 Certs.
Network+ & Security+ in few months.
Will attempt them atm

Who can help me convert my old laptop into a parrot os

just flash the iso after u seed it

or is there something wrong with ur old labtop

Question with certs exam is it based over several days for the exams

No, I just bought it a month ago but upgraded my present laptop for school

I'm not familiar with flashing or doing any of that

ooo fire

network+ is the beginner ccna

so you’ll be fine

without any studying

so I'd like to have someone by my side

uhh sure

https://www.parrotsec.org/download/

Yeah. Ive seen the syllabus and it looks old and not that much higher level to mr

Like begineer friendly

I'd appricate it

you trynna fully make it ur system?

yeah

oki

Go to this link,click live

click security

or

what ur using it for

then click amd

I've got one for windows and want one for that os

then click torrent

@spiral notch

Voice call or general chat

I appricate it @versed pagoda

But like I would rather have someone by my side

alr

Im just freshy so don't know where to go currently.
Not into proper direction. I think i'll take some time to explore few more fields and complete eJPT, Security + & ICCA Certs.

Also,
I'm reading Hacking : The Art of Exploitation (some of the parts are covered in syllabus)

I’m getting some distressing text messages from two phone numbers.

What can I do? How can I find out what their name is?

I've done a bit mistake by taking Fundamental course of Security INE. (It helped me alot in CCNA but I think it cost a bit and they taught things deep dive things much).
🙂

Block the numbers.

Dave it sounds like ur the one sending distressing text messages lol

Contact support

She did alr

But she said that she hadn't sent any emails which is what they use for verification

oh u want it in call?

Yeah sent email or received emails so maybe could have used there sign up email as a received address that’s about it

@undone fractal

after looking through a few places

apologies for taking so long

https://www.youtube.com/watch?v=rfscVS0vtbw this imo is the most efficient you can be with your time

@teal dawn Please read the #📜・rules #3 we do not help with account recovery. You can contact the platforms support directly.

@teal dawn if the account has no recovery by e-mail or phone number and no usage history like sent emails , then microsoft’s system has nothing to verify ownership

best thing you can do is go to Microsoft’s account recovery form and give as much infos as possible to prove that you are the owner

oooh freecodecamp, the best at python

No worries!, Thank you so much for taking the time to find the materials!

I’ll take a look at it when I get home from work

hi guys
Do i need to know any programming languages to be able to become a hacker

No, unless you do

yes

so is that a yes or a no

and those languages depend on what type of a hacker you want to be. cloud based app sec has diff langs, native apps have different langs, web apps have diff langs, system architecture has different langs

yes

okay
thanks

on to the next question

The answer is "it depends", it is not an automatical requirement unless you venture into fields that require it

😭

im in my third year of college here in ghana and i took a liking to cyber security during the recent holodays
i've been following network chuck for a while now
and he's taght me alot
what dyou guys recommend for a beginner like myslef

do courses in cisco for netwowrking if you haven't learned networking yet

first of all

then learn linux basics

what systems do i need to have in place to be able to delve into the whole plathera of cyber security things

how to sue linux's terminal

alrght thanks
i have been using linux since my secon year so im abit conversant with it

depends on what side of cyberSEC you want

offense or defense

what if i want both
ig i cant do both then i'll like to lean more towards the offensive side of things

parroOS

been using parrot os but on a virtual machine
my main os is ubuntu

you can. many people work both on the offense and defense. you call it purple teaming

appreciate

so how and where do i get started

just explore the domain and look what stuff interests you the most. is it appsec? is it malware analysis? is it clouds?

then pick one from the bucket

and start mastering it

alright
and where do i go to get the full load to explore

google and chatgpt

plus there are several resources here as well

#🛠️resources-tools #💕・free-resources

okay
will do and get back to you

yessir

alright
im done going through
will try tools like tryhack me and hack the box academy to get my skills up
will revert if anythin

#📜・rules

eh..

uhuh

dawg sent the number

Dont listen chat gpt is horrendous

i guess no one can help me here :>

Your right that’s against the #📜・rules

@vast comet please don’t break the rules again, #📜・rules # 3

Hey can you show me ways to get back to the place wey I was introducing myself earlier please?

@rustic fern #💬・old-gen-chat

How do hack ppl on Roblox

💀

why you got the same prefix in your username

you're not from the MI6!!!!!!!!!!

LMAO

The file of shame grows every day

Now leave this server we dont tolrate ppl like you

Hey all haven't been around in a while been working on taking classes and also doing some practices and exercises. I'm working on a project and was wondering what AI agents you guys like for assistance with coding etc do u prefer the main guys. Claude chat gpt Gemini Venice or specific custom repositories. Thank u all in advance and I appreciate the help 🤍

Oh now someone's shamed lol

And if you ask this dumbass question agian then i dont doubt the mods will insta ban you

@forest finch

Yeah get this weirdo out of here

Depends on how much practice you already have coding.

I personally don't think AI is good enough to "Do it for you", but as a side-helper for someone who already knows, there are a few that have been mentioned.

Always

Also rule 3 #📜・rules

Read before you text

No for sure not to do it for me. I have a rudimentary basic knowledge that I'm currently regirously studying on. But I've been building simple things like an ethical scraper that will for example gather buisness Info emails public info.

Also a few other things

Man it's as live in here as ever tonight huh 😂

I honestly like githubs copilot but id defo give gpt a go now its 5.0

Defo talk to me about that i can put you in contact with some dueds who deal with that stuff to pass you advice

Getting up with u now

Ill see when ther not busy

But id honestly just check out slme data leaks and stuff like that and put some scapers into certian platforms cough cough you dint hear that from me

Yeah no worries I'm adjusting and making changes to it every week just something to do

Also dont scrape for ussernames at firat scrap for usser ids

Can I hack Roblox there or... 😂

Lollll

How do i hack nasa guys /serious

I've been doing really uh regular things I'll message it to you. Just publicly available like for example artsy website collecting leads for a friend who does photography gallery info adjusting speed now and not overloading servers as advised etc

The old NASA hack lol ghost in the wire em 😭

I mean thers always a site you can look at what has alot of info what is gather through unknown means wink wink but best not if someone looks in and saw you used bin idk what legaly wolud happen to you

Understood

What about if i just send them the i love you virus

we don't do dat

read the rules

Maybe hit em with the ol pikachu 😂

I only mention unethical stuff to warn btw

:>

Also this

🫡

The police and fbi are in here btw

We know this is a fact

I mean with the group being advertised so heavily these types are unavoidable 😂

True lol thats why oyu gotta be harsh with em

Spare the rod spoil the child. I'ma get back to it. I messaged ya though. Appreciate ya 🥂

just came here to say:

Lol

"oh wow can you show me how do you ssh into a password protected computer?"

and then show you his name and badge number

Well first yo....... fbi roundhoused me in the face

you might be one of the feds

or I might be

or even @whole parcel

https://tenor.com/view/because-they-are-watching-because-theyre-watching-cuz-theyre-watching-cuz-they-are-watching-they-are-watching-gif-18524475

No i am

Just might be

Gotta be fast 😂

https://tenor.com/view/listening-what-fbi-chris-redd-alex-moffat-gif-6979458711427891298

Open up it's the feds man we came for the computers or whatever. 😂

you need to be level10

https://tenor.com/view/lord-of-the-rings-lotr-theoden-rohan-two-towers-gif-13863406401517703527

No fed power 😂

Help

Hello, I have a question concerning my protected hack lab of three docker containers a bot container requesting a pdf using a token, a webserver hosting a pdf and the attacker. All in same subnet. I am trying to run mitm attack. I performed arpspoofing and packet sniffing using ettercap (in the attacker container i installed ettercap-text-only). now i am inspecting the captured file .pcap with wireshark. the arpspoofing i noticed is working but the packet sniffing. The SYN is not completing and i am not seeing any HTTP request or response. I wanted to send in the .pcap and my docker-compose.yml files here but i couldn't upload file. can someone help me here. I am using a custom bridge network. i asked yesterday but got no reply 🙁

For Docker networks, ARP poisoning works, but if you don’t forward packets the handshake dies and the victim never gets the response.

I might try arch then

Hello, anybody know of a legit OTP bot?
Help

Hey guys I need a help

With c++ coding and a gave development

Any developer

don’t ask to ask, just ask

I need game devs to help me with codes cause the loops are bugging my game

It's a for loop and it is with a if statement forcing to to act only if the player try to interact with it but the object gets stuck mid way and goes back to initial state and then go through the code and then works

otp bot?

Yes

What does an OTP bot do?

If you’re asking ,this question is not for you

He probably think some kind of OTP brute force.

Which won't even work.

No, its something else.

Ah there is even a profressional description what an OTP bot is.

Never knew about it.

Maybe I'm trying to make sure that asking for a bot that will phish a user for their TOTP codes isn't something that is maliciously used and against the https://discord.com/channels/990435451334688768/1182147223266537553 to talk about.

@woven anvil you know every bad thing was done for something good until bad people get ahold of it. Not anything bad is actually used for something bad

we can’t help you with that i’m afraid. it’s against the rules
#📜・rules

no, nobody is helping you

contact the police

they might

Thank you

I did try that the police said that it’s not a threat and only to call them when they show up at my house 😢

As bad as my situation, I understand rules are rules. It’s OK everyone thank you anyway.

Hello, I'm looking for some advice on getting started cybersecurity in terms of study and qualifications. I"m currently enrolled in a Harvard programing with python and i have done a little bit in the TryHackMe site . is there anyway i can pratice what i learn in a safe and legal enviroment?

Maybe in virtual machine.

There are platforms like tryhackme, hackthebox and portswigger where you can practice your knowledge by solving their labs

I have Oracle Virtual Box ill use that. what about qualifications for employment reasons?

Why?

It is a free tool I built that I thought it would be helpful to the community especially beginners

Seems sus

And posting it across multiple channels seems like spam

It is not. It is not a phishing link

need to request access lol

Ok i will enter my email and password then

nooooo

@ivory grove here is how to hide trace that you are nmapping network. | there is more ways but u can use this

1. get vpn (like mullad , proton)
2. install torsocks
3. set up proxychains
4. use -T2 and -f in nmap to slow down and avoid firewalls.

(do all this together if u can)
(also you can find free proxies for proxychains in google)

what

proton has security concerns due to always submitting and ratting people out through their mail service.

-f fragments packets, it doesn’t slow anything down.

torsocks alone won’t solve the issue either.

Proxychains won’t safe from much if you route via tor because there is a 9% chance to hop on a government monitored exit node and get caught too

don’t give advice about topics you don’t know

Proton also gives telemetry to gov

is Kali linux the most popular os for penetration testing?

probably

it is the most famous atleast

its just cus there is a lot of tools pre installed but a lot of them still need to be configured so for me it doesnt really matter

and it gives u a lot of useless stuff imo

but sure, good for intro purposes

Thanks. im still really new so it sounds good for learning

Yes

Not the best tho

Like there are better alternatives that are just less popular

^^

is anybody here good at making hard forensics cahllenges?

would love to know whats the process and i would also like you try a challenge

need someone to test my challenge

👀 👀 👀

Got my attention

great check your dm

it's really good for 2 cases

1. client requires working from a system they own, e.g. vm or corp laptop

2. customizing as an image for yourself to use as disposable OS for each assessment

Hello, I'm looking for advice on how to set up my home server to work as a VPN. What is the best and most secure way to do it? The goal is to bypass the firewall restrictions while securing and hiding the IP and encrypting the traffic. The server is Linux, the client computer is also Linux

setup openvpn or wireguard and forward port

be aware anything exposed to public internet is going to get slammed with scanning and bruteforcing attempts

may want to set up fail2ban

I need a small help I got my kali linux back but there is a problem. I downloaded it on a hhd drive partition and my windows is in SSD disk partition but uk my grub isn't able to find it like it knows about my hhd windows storage file cuz it's the same place the kali has been partition so what do u think what should I do even though my ssd is nearly full so had to do with my d drive (hhd one)

that description is very unclear

do you actually need a bare-metal kali install? recommend starting out using it in a vm