#👥・help-me

any mods available at the moment?

#📩┃ticket

awesome thanks, I have not seen that addition yet

I figured it out . I needed to turn my windows defender off . now it works . thanks

I need help I clicked on a Facebook link and it took me to a explicit video and then a ad popped up saying my phone had a virus i exited immediately should I be worried and what can I do to make sure my phone has no malware

ur phone is fine

was a fake pop up

rufus will not work well with kali i suggest you do not do this.

It worked for me also

@spiral notch

DM ME

Ur still trying to download parrot

No, Im trying to properly format

the previous device

before hand

That’s a relief thought I was gone have to format the phone

no

are you on iphone or android

Android

k well either way just dont install any unknown apk

Copy that thanks

Any tips on learning Linux

https://academy.hackthebox.com/

the linux fundamentals course here is free

should teach you everything about linux

Thank you

yw!

Uhm does anybody know how Alibaba will drop ship your products to your customer

Wdym how

I also have no idea

So when I did everything now what I have the GNU Grub

opened

and trying to figure this out

you will lose all ur money dont bother with dropshipping

dead practice

Then what should I do

To get fast money

Get a job

Bro I am 14

then you shouldn’t need money

go ask your parents

Bro they aren’t giving me shit

could kinda guess from tho

why not

also what do u need money for

For a shirt and a soccer ball

dawg go

clean cars in ur neighbourhood

make some pocket money then go buy it

I tried but failed

try again

go buy things on Facebook and resell them

failed to clean a car?

lol

💀 😭

Yes

I actually mean it

I swear to my life

that’s insane

not a flex bro

It isn’t meant to be one

just stop attempting

you’re literally 14

Yall I had a gmail account but now I can't login on it because I don't have any idea what the password is and it doesn't have any other methods like recovery gmail or same account in another phone

Go ask your parents to buy it for idk

Good grades

unlucky

contact suppoty

I am actually 13 I was lying

support

💔🥀

Ok

uhh cool?

we could go a bit lower… lil bit

doesn’t change anything

Bro look at your username

??

what about it

I bark at computers

Wtf is that

ok?

fcukin hell not again

Ok?

I bark at computers but atleast I make over 6 figs doing so

Alr buddy stop lying

I bark at computers but atleast I’ve been on podcasts with countless people including the founder of anonymous

@lost vapor

smh

we have 13yos here now

Who is he

worse than skids

u gon tell me I lied about this too?

maybe yk go ask literally anyone who’s been here for a while

and don’t judge others

Alr bro sorry abt that

6 figures what does that mean

LMAO

100 thousand or a million

you said I was lying and didn’t even know what it meant

100k

Bro I hear it everywhere I just know it is like a lot of money

but yeah right man I’m a liar lol

Bro sorry abt that

https://kvts.surge.sh this is all made up too fr

you’re stressing over someone who doesn’t know what that means

no im laughing

this is rare

I am 13

fair enough then lmao

so am i

dw

when I say in caps

I’m not rafebaited I’m just in disbelief

this server amazes me more and more every day

So you are an adult?

Right?

depends

I’m a minor too if that’s what you mean

we got all sorts of people as i see it. the diversity is insaneeeee

Bro what

How do you then make 6 figures

what

because maybe I finished hs early

had good connections because I was interested in cybersec since 12

I didn’t even begin yet

and broke into the cybersec field with an internship by 16 and a job by 17

That is cool

Not goin lie

Alr @spiral notch

You went college?

no

I’m considering

I enjoy the money but I wanna climb higher in corporate as well

a degree would look good on my resume

Alr cya

hey does anyone have any recommendations for free resources i can use to learn IT? i have basic knowledge on programming but im 17 so i cant get an apprenticeship or anything yet

Could you teach me how to make 6 figures

not legal for you

you’re 14

you can just learn

lots of resources out there

#👥・new-member-guide

anything more specific in IT?

Fr??

Cybersecurity

.

to get a job and start working yes

How goes it everyone 🫡

good but just for your information the main chat is #💬・old-gen-chat

Anyone know how to hack IOS games like Animals & Coins?

No need to hack. Just use your credit card.

Wym?

I don’t have a credit card.

To be honest I just want to learn more tools to help people online

I’ve taken down a few scammers and helped some ppl but I want to expand my toolbox basically

Ok, cool appreciate that make sure to read & respect the #📜・rules here. Thank you 🙏

#👥・new-member-guide

Thank you I appreciate it

Anyone know how to 1. Check if my iPhone or sim has been closned 2. Tips advice to ultimate security on my iPhone running iOS 26

you can’t, unless you jailbreak the phone. under normal circumstances amfi subsystem would make integrity checks on launch and during runtime

you’d need a jailbroken device to disable that

check out amfid userspace daemon

interesting concept

your phone’s already secure enough if i assume you’re talking about ios 16. just look out for suspicious links and fraudulent emails

most breaches happen because of the human, not the machine

I’m like totally new to this and don’t understand what a lot of words you just said means I’m sorry to be that guy. Could you explain that to me and guide me on how to check that out?

you don’t need to do anything. just be aware of scam links you receive from unknown sources

Let’s say I already received one and thought it was actually from Apple at first I clicked the link and then a weird screen open saying it was diagnosing my phone during diagnostic and then it just went away

yaa always verify if the website mentioned in the link is legitimate or not

but i don’t think anything’s happened to your phone

It wasn’t :/

apple has a pretty solid sandbox

Thank you that actually just made me feel a little bit better and more at ease

I have a doubt in concept of salted hashing...

it's like lot of confusion for me...

I read lot of blogs and all of them says... salting is

At Registration

User enters password = P.

Server generates random salt S.

Compute H = Hash(P + S).

Store (H, S) in database.

At Login

User enters password P.

Server retrieves salt S from DB.

Compute H' = Hash(P + S).

Compare H' with stored hash H.

  If match → login success

  Else → login failed

But here in my office (I am fresher, joined in team of AppSec), the concept is different.. and honestly... in both concepts... I find it really confusing... and flaws in both concepts...
for this method, I say why the salt is storing... it should not store.. if it is storing then why we using salting... i think every time new random salt is generated.. for that the concept at my office they taught me...

when user is registering user is registering, then the password is hashed and saved in database. Now when he try to login, then server generates salt. Then salt is sent to client. Client enter credentials, the password will hash now, and then salt is added. Combine will again hashed. Let think of it value v1. now on server the password is already hashed there and salt is generated on server, the server will add the salt in hashed password and again the combine is hashed. let think of it value v2. So now server do the validation. if v1==v2 then successful login else if v1!=v2 then failed login attempt.

I don't think during registration, password should be send in a hash form only not with salt.. so see the concept is flaw here also.. what's the use of storing password in hashed only in database... and salting is use during authentication time only..

So yeah it's pretty much confusing for me.. and my mind if blowing...

what thing is correct?

what should I do?

stick with office people...? because I am not good at salted hashing.. and I am not able to counter their questions...

your office is implementing a pretty dumb salting protocol ngl. salt generated at login first of all. if a diff hash is produced each time user logs in, it’s highly inefficient unless your work has implemented complex protocols to align computations at client and server sides

hashing password before adding salt and then hashing again? what is that lol

sending salts to client to combine with a passwd hash doesn’t sound too secure to me, let alone all the inconsistencies it follows

just to make it clear now, passwords should only be hashed on the backend server using a slow hash function whichever you’re using. don’t just go haywire on client-side manipulations of hashes

salting only during auth is not secure. one salt per user which has to be stored within the server or its shards

I’m new to cyber security I love taking things apart but I jut joint tryhackme to see what careers I would be GREAT at any method to finding my strong suit in?

explore everything, pick the one you like the most

Could you elaborate more on taking things apart?

Any working recourses for fud crypter and anything to lead me in the right direction thanks in advance

#💕・free-resources

Quick question. What is the best anti virus malware protection? For windows that fud can not bypass

I understood now...

Thank you so much for explanation...

literally none

all anti viruses have some sort of bypass

In terms of replacing batteries in laptop and screens things of that nature

I need some clearing here. I found two port open on a private vdp target. Port 5060 (SIP) and 2000(SCCP). So i went in my Wireshark to capture the packets. Sent options and it returned

Allow: PRACK, INVITE, ACK, BYE, CANCEL, UPDATE, SUBSCRIBE, NOTIFY, REFER, MESSAGE, OPTIONS

Here some weird stuff i noticed. When i make nc connection over udp it gets filtered but goes through when i make the connection in TCP, my wierwhsark showed all three packets, syn, syn+ack and ack. But here is the thing thats bugging me. It does not response to REGISTER request. It just timesout. Is this something worth looking into or skip it ?

could be any reason. it may be configured as a proxy-only server or may require authentication to give responses, sometimes ip-based restrictions too

but the fact that it allows PRACK, INVITE, ACK, BYE, CANCEL, UPDATE, SUBSCRIBE, NOTIFY, REFER, MESSAGE, OPTIONS means it could be vulnerable to sip floods or sip-specific protocol attacks

also tcp allowance and udp disallow could be the result of network segmentation

i ran some nmap scan given by gpt which i didn’t even knew of and the register request went through ig? Because in wireshark it shows (1 binding) ?

My initial thoughts. Im now waiting to see if i could exploit it further or just report this as informational because this is a gov owned bank lmao

if its 1 the server accepted and processed the req which means it does allow registration. maybe the register header was incomplete or didnt have adequate parameters to fulfil

patience. something would eventually come up lol

Yeaaa patience is the key def

#👥・help-me message

Hey, I’m fairly new does anyone know if there is anyplace that I couldn’t technically hack to get info without getting in trouble of interfering with anyone. Like any abandoned websites or something. I want to be ethical but I don’t know what to train on.
Pls dm

#👥・new-member-guide

TryHackMe would probably be a good fit for you. The link is in the list Crusher linked to you.

I want to learn about...

Encoding, Encryption, Hashing, Obfuscation and Salted Hashing

Can anyone suggest me some good blog posts ... multiple if possible... I want to learn them completetly

https://auth0.com/blog/encoding-encryption-hashing/

https://www.geeksforgeeks.org/ethical-hacking/what-is-salted-password-hashing/

https://www.techtarget.com/searchsecurity/definition/obfuscation

hey guys... when i was setting up my ubuntu i accidentally set it to ethernet and now my ubuntu isnt catching any internet

and yes on VM i went on Networks on that i enables NAT but nothing seems to work

and stuck on it for 2 hours

is the interface up?

sudo ip link set eth0 up

is that what i run on terminal?

i could turn it on again

like actually the real story is i saw a YT vid where guy was finding holes in his IP add with a site and i wanted to do the same but no site worked (or it did but i just didn't understand like what it was supposed to show and shit) so i knew afte all i was gonna download ubuntu and do that testing there but ubuntu has this problem

i mean idk if ubuntu helps finding holes in IP or kali does this?

Thank you so much ^^

Hey peeps, hope you all doing well.
I'm looking for a bit of advice here...

I finished my BSc in Comp Sci end of last year and currently working in a DevOps/Hosting Solutions job.
I want to study further but I don't want to do my honors so I am thinking of going the cert route.

Any advise for which certs to start off with and do on my roadmap (in which order) over the next like 3 or so years in my spare time. Something in the Security/Network field

#📜・certs-and-career

#💬・certs

guys please help a rookie out here..

seems like you don't really know what you are asking, and if it is that much extra difficult to answer, many people don't bother

also you were asked to run a command, and we have yet to see the output

I am able to bind and unbind random users to it now. The reason i wasnt able to do it was before starting wireshark i sent a register request and then didnt unbind it so all i got was call-id is mandatory error.

well i just need to run internet on ubuntu in simple

ok then ima run that command rn now and tell u what happens

dont tell "me", I dont care - better tell the channel

Are by-chance using virtual box ?

yeah

i am

Restart your vm with administrator

I had a issue similar to like this with my kali in virtualbox. I did this and it fixed it

uhmm what does that mean😭

This

it means "ignore it until you answered the other question"

Oh crap i cant send images

Close the machien and orcale virtual box

done

Then search oracle box in your search -> right click the virtualbox -> run as administrator

okok

Now ping google or some website

See if you get response

@mental oar

@slim quiver ?

just a moment please

im doing it

i opened oracle virtual box and runned as administrater

now

u want me to open ubuntu and open terminal?

right?

Yup

Alr alr take your time

sorry, could u tell me what to ping

like the command

ping -c 4 google.com? is it?

That would do

ok

it said

But since we are totally in the dark here about how you caused the problem, apart from "looking for holes in IP", I would be surprised

temporary failure in name resolution

ping -c 1 8.8.8.8

ok ill try this one

i think it did something

i mean when i was setting it up i accidentally put internet as ethernet while setting up ubuntu but im on laptop

None of this tells us anything

if with "on laptop" you want to say "via wifi", then your virtualmachine does not see wifi, it runs entirely on virtual hardware, and the host operating system will virtualize network as ethernet

ohhh

alright

soo what´s the solution for me?

We still do not know what you broke

ugh😭

yaa i did assume it'd have been a header issue. cid correlates transactions so a must-involve header

And when you simply write "i think it did something" and seem to think that's enough input from your side - I really don't intent to prompt you for details any longer

Just delete the machine and initialise another if you want.

like what

You did install the ubuntu image so it wont take much

The ubuntu virtual machine you running right now

oh

so do you think its worthy to report it now or do i need to go further more ? I am kinda new to pentest so i dont know actually where to stop or when to go further lmao

no it's not a vuln if register header is configured properly. could you verify if you could register arbitrary users after correctly forming register requests?

I can registered any random user. I tested with testuser1,2,3… retardmonkey… also unregister them. Can send INVITE. Also made a call too and then using telephony in Wireshark i can play the stream even thought i didn’t said anything in the stream

I think I can run any method i want i mentioned in the initial post but i only tried options, reg, inv and ack

Is anybody here familiar with the emulator MEmu and is anyone aware of a way to downgrade an app version when emulated on the app itself?

oh okay yes then it's a vuln

infact multiple vulns

if you can register multiple users and unregister them then it shows signs of unauth sip registration hijacking

I’m new, “Vuln” means vulnerability yeah?

Felt like a no brainer jus always like to ask to be sure, I’ve been wrong plenty of times so best to jus ask than assume yk

also if you could probe legitimate inv requests and place calls as legitimate users without auth, it'd lead to an unauth telephony attack

which is again a vuln

yes

Thank you

Yeah thats what im tryna do now. Make a call with linphone

Hi havent said anything in here before but, i would really like to know if someone knows a legitimate way to check if there is a keylogger og backdoor or whatever on your android phone. I have somewhat of a suspicion there might be and really want to check.

if you haven’t installed suspicious apps then you’re good

i bought an apdapter for a project but when i plugged it in my screen jumped

idk just wanted ´to make sure

did it download anything sus?

any apps it ran

Weird permissions it requires

nah it just seemed sketchy

im just paranoid asf

hi guys, new here. i am stuck on editor box in htb. i have found the foothold but cant find the user flag. could anyone help please?

are you in the oliver's system?

no, got the foothold found a mysql db but couldn't find anythng valuable from there

foothold you mean xwiki?

yes 🙁

look around

there's some password hiding somewhere

that will give you access to oliver

i went down a rabbit hole of understanding xwiki, so you are saying i don't need to read the mysql db 😐

its not req

when i solved it i got the password in a pretty straightforward way

idk if any unintended paths exist

ahh

no ur fine then :p

Can I bypass the phpmyadmin login in PHP 4.6.6

I don’t know, can you?

Whats a good website to read the writeups of ctf or bug bounty i wanna learn from people's experiences

haven't used this before but looks like it could be good: https://ctfsearch.hackmap.win/

Thank you

Hey sorry as I've been at work, i can send the account link here.
https://www.tiktok.com/@userrrrr_888?_t=ZM-8z84Vfbo8Rk&_r=1

Ghis one

Best to report, don't do illegal things

Tryhackme pictures will refuse to load in. plsss help. Nothing is working to get them loading in.

On this server specifically?

its generally with any tryhackme anything i go on

no other web padge acts like this, only tryhackme

THM has its own discord server, maybe ask there

Does anyone know how do I get started on Gatsby and ghost?

would anyone want to consult me on threat actor profile generation?

i found out it was my government which was blocking the images

Thats what you are starting with?

same day account, unbelievable story.. no clue what they are talking about, not buying it

@chilly merlin attempting to trace or track someone location through an IMEI without proper legal authority is illegal. please make sure you read the #📜・rules #3

I have an alt account.But whenever I log my phone number out of it.I am unable to use the account.It is the only account that requires a phone number to be used.??

Why do I need to confirm mobile number to just use my account 🤨????.wtf is happening

vpn

dont login to an account while a vpn is on, but you can turn it on after logged in to not get flagged

Didn't work

accs flagged until u make a new one without the vpn

The moment I open the account it shows verify phone number

It works when I confirm my mobile number

why didnt you just confirm it then if you had a number

It's annoying cos I use 3 accounts

everytime you login or make the account you cant use a vpn

but you can turn it on once your inside of it

if its already been flagged, you just have to make a new one

Oh alright will be careful next time

if your using the app alot of vpns have a bypass feature where it just skips that app

What are the reasons for flagging?

ip banned people on that vpn ip is why i think

Makes sense

though im not completely sure

lost alot of accounts from that too

So once logged in using the new IP it becomes the permanent IP?

not necessarily permanent

if you log out and log back in with that vpn on

it will flag it

every time you login or signup you cant use a vpn

but if your logged in already you can turn it on

Alright thanks bro

np

need help with tryhackme rn, could someone help?

whats the problem?

So there are new "Weekly Missions" and one says to earn points, how do I do that?

what are points?

id just look it up i have no idea

could I dm you a pic rq?

what picture?

of it

k

done

you can get points by being a top performer in a league, and answering questions in rooms

aint no way

i personally dont use tryhackme, im just using info i found, so what im saying may be completely false

fair

“Hey guys, wondering if anyone can help me out. I built an RPG text game with ChatGPT — D&D style but with a different theme/genre. It’s been a hell of a lot of fun to play, and I even came up with an HTML format that ChatGPT can generate for continuity and character sheet tracking. The problem is, I’m having trouble getting the continuity to work right in each HTML. Anyone know how to fix this, or can point me in the right direction to figure it out?”

depends

im not a very advanced coder

also you left the quotes in that prompt

yeah i have dyslexia and spell horrable so for it to be readabe i use chat to fixe it

how about you just ask gpt if u use gpt so much then

lol i have and i cant get it to work right but its cool if no one here can help thanks though

you never gave us any errors to fix, just described your game

idk what we are supposed to do

ok when i get the Html to start a new sesion of the game the story falls off some carry over to the new thread but more drop out and it has just the story parts becouse i also use a charater sheet to trak like level and inventory and quests and all that jazz

i wouldnt call that an html problem

its gpts data storage

Hi so there’s a TikTok user that is stirring up a bit of trouble by the name of @pierce_the_glenn he’s basically making fun of SA victims on TikTok . I really want to figure him out if possible, namechk and tineye came back with nothing. Yandex also came back with nothing of importance. If anyone can help me I’d be grateful.

rule 3

its probably just ragebait

Literally was my bad man, might as well learn something while I’m here lol.

its fine lol

You really shouldn’t be posting targets but maybe you will find this helpful:

https://www.bellingcat.com/resources/2021/11/09/first-steps-to-getting-started-in-open-source-research/

Where can I learn OWASP Top 10 (definition, impact, mitiagations). Along with the main vulnerabilities in it.

I guess to learn main vulnerabilities in it, I should look for it in port swigger.

I want to know expert people point of view.

Thank you so much in advance.

Start here:

https://owasp.org/www-project-top-ten/

https://portswigger.net/research/top-10-web-hacking-techniques-of-2024-nominations-open

https://portswigger.net/support/using-burp-to-test-for-the-owasp-top-ten

You spelt horrible wrong

dont have to correct it if you got what hes saying

How to install and use linux

Thank you so much ^^

Can anyone help me, I’m new and I was given a link or sumth by wapiti to open but I don’t know how to open

Your grammar is awful, it’s “he’s” not “hes”.

bffr

your spelling is worse, it’s “something”, not “sumth”

🙄

Is there any breach to port 80 or 443

???

Can you attack a website that has those ports open

a website needs to have atleast one of those ports open

to be a website

Yeah but how do you attack those ports

Those are merely ports - not services or vulnerabilities. It depends. And if you have to ask, then maybe you are not tall enough to enjoy this ride at the moment.

okay grammargamer

guys which browser for iphone is the best when connecting to unsafe wifi and resistant to exploit firefox or firefox focus or brave or opera?

brave

None. Don't connect to a WiFi you don't trust.

Yo you’re goated thank you for the resource.

Hey guys if I’m on tryhackme and got to intro to lan and can’t go any further because of the paywall, what other resource do you recommend I get started on to day for free?

Like I genuinely wanna learn as fast as possible.

you don’t need it

htb goes in detail in introduction to networking

Tryhackme has most of its resources good enough

They’re just good at advertising modules that look like you need them

by incorporating paid rooms in what seems like modules where you shouldn’t skip anything

I have a question my road map is taking PT1 then CEH after that oscp is that good ?

No lol

CEH by EC is bad

The company ruined their reputation

PT1 is too new and not recognised

and OSCP.. don’t rush

I liked PT1 because it's more practical

you picked one of the hardest certs that exist in the industry, made by the same company that created Kali Linux

so you’re doing them for yourself?

not for a resume later on to get a job?

I can get internship for Fortnite but I didn't like it

what position?

I'm still studying so I want to get as much knowledge as I can

My uni get contract with Fortnite free laps and courses but I have only one attempt for the exam

im currently a grade 10 highschooler looking to do impactful projects that will really help with my college profile, if anyone whos done these before and majored in CS, could please help me out, im specialising in Cyber and networks (architechture and solutions) please send me a DM :)

"Fortnite" Fortnite, or is this something different?

There is no such thing as fast as possible. Take your time, dive deep into things & thoroughly understand. Don’t rush the learning process my friend. It takes time.

I don't get it

Fortnite the Game?

fortinet I mean

Hey ...I am new to hear and I want to be good at ctf in all the catagory can you tell me from where to learn and what resources should I follow

#👥・new-member-guide

does anyone know why SP flash tool doesn't allow Scatter files from V6 on

i got the scatter file for a device but the latest V5 doesn't support it and asks me to use a newer version

but the V6 only used .XML file

which I've no idea where to get from

can it also be extracted from the firmware files just like we do w the scatter file?

yeah that makes WAY more sense ! 😄

What’s a good cheap phone to buy

what's yer budget

Hey i have a problem with my PC. Can someone help me?

400

S24 FE?

or Nothing Phone 3a Pro

help

yelp

welp

how

how can i start

im lost

i dont know anything

Does that cost 400 pounds

i dk coding idk hacking idk anythin

pounds?

i uh

dollars

you never really needed any of it then

i need them

Then learn

Using courses or free things on yt

hey i need some help so i use cloud warp to play valo since my hostel wifi has it blocked but now for some days i am getting very high ping uk why??

what would you like to do cuh

never mind everyone keeps saying to me just learn just learn

maybe im going to try to just learn

fair enough

goodbye

aight

Hey i have a problem with my PC. Can someone help me?

say what the problem is, someone might be able to help

my pc crashes everytime when i close a game on steam. it says "you pc ran into a problem" "critical_process_died". i have this just since a few days

now wait for someone to help 🙂

okay

U pesky humans

🫠

since we have no solid information to go on.. memtest?

according to google 🤓
i think the models I've said comes in your budget dear sir @tough moat

what

We don't know how to help you, since you don't know whats wrong, or can't reliable tell us any details about the problem. So we have to start somewhere.

memtest is testing your ram modules for errors/faults, which would be a way to test the first possible issue

well. can we do that in private messages? if you wanna help me. i can tell u more abt it

You ask "how do I memtest" next? Well since we don't know jack shit about your computer right now, cause you told us nothing at all - I would suggest looking up memtestx86 as a live boot linux, and let it does its thing

I dont do one-on-one support, no

ok

🥀🥀

hey i need some help so i use cloud warp to play valo since my hostel wifi has it blocked but now for some days i am getting very high ping uk why??

Thank you

melcow :D

hey i need some help so i use cloud warp to play valo since my hostel wifi has it blocked but now for some days i am getting very high ping uk why??

man just don't play valorant 🥀

help 😔

its same for all game uk it also includes steam

i get bad ping on cs2 aswell

aight

maybe try another vpn

i did but none are good

and i cant find a good one either

or pick the same server on val as the one on your vpn

if you haven't done it

surfshark, cheap and good

proton, not so cheap but good

hmm ok ill try cloudfare was free man

well

it is what it is

cf warp is not a vpn

need a laptop around 💲600 .... mainly for coding, bit gaming ,editing ..suggest some

none

for gaming?

what games lol

editing is out of the question

unless you’re talking abt some lightweight cap cut or davinci

no 4k or smooth footage

skip gaming now focus on coding and bit editing

no

meh vpn

atp use more, more support

nord

editing is out of the question for that budget

what type of footage?

:O i used to use it

just normal like phone capture

switched to proton though

then that’s not rly editing much

just some basics

yeah

then yes literally any laptop that can run windows

will be able to do that

by default when you say editing I imagine timelines with up to 10-15 bars

4k raw footage, etc

proton is decent but logs

not anonymous

i don't do much shady stuff so...

ever since you started using warp?

there are other dns resolvers you can use

right mb

wait bro, you might be able to help me out w smthn

me neither much, not anymorenatleast

https://dontasktoask.com

aaha

okok ...BTW what about lenovo thinkbook 16 ..any words about it

XML files

where do I get them from

for flashing using SP Flash Tool V6

for some reason the scatter files i made aren't working on V5

for flashing what

specs man, specs

a galaxy tab a9

send me the link to the devices you’re considering

idk the budget country wise

idk the laptop economy in your country

find something affordable and something that seems good and send it here and I’ll give my feedback

@knotty briar ^^

yeah but what are you trying to achieve with it

it belongs to a fren

bro got it bricked

I'm tryna get into download mode so I can flash it w the firmware

ahh

gotcha

go for

samFW or firmwarefile

decently reputable places

yeah

I've got the firmware ready

uayor tho

eh

wdym

use at your own risk

yes

aHa

ur searching for the x files

xml

https://amzn.in/d/gIomyPA

no?

yep

since V5 isn't working

I'll have to go w V6

Thus I gave you 2 websites

Where yku might find them

ic

first of all

okei

I'll check em out thenkyuu :D

you need to get the 16gb beers

vers**

decent professor

professor

processor

smh

will be fine for light editing

hacking will be more than enough

gaming I mean yeah ig

a bit of Minecraft and Roblox

That’s it, no more

Generally best option for hacking is thinkpads

They’re pretty customizable good for battery life and replacement of components

network adapter and so on

and pretty compatible with Linux

@spiral notch they don't have anything remotely close to an XML, they just have the official firmware

ppl put network

cards

that support monitor mode and packet injection

like directly into them

to make them WiFi hacking ready

so finally with a bit hesitation if I extend 8 gb to 16 gb it may work 🙌

then final.

tried xda forumsB

?*

https://xdaforums.com/t/need-help-flashing-sm-x110-mt6789-with-sp-flash-tool-v6.4680118/

have threads like these

i read a few yes

just buy the 16gb version upfront

if you weren’t sure what laptop to get you’re not gonna be risking hotswapping the ram lol

hovatek forums?

the dude who posted this replied to the thread himself "nvm solved" 😭 and there's nothing useful in there

honestly @spiral notch thanks 😊

@spiral notch so apparently I'll have to "create" the so said XML file

but idk how :/

GG

gonna have to dissect the firnware

best of luck

🙂👍

I'll need that

atleast i now know I'm not the only one having trouble w SP flash tool V6

:/

how though

thinkpad p52 refurbished, the M3200 gpu if you can get it. Put the rest into ram/storage

that thing can get up to 128 GB ram, has 3 internal sata ports, should fulfill all your needs for a while with the M3200 being a 6 GB nvidia gpu

can i ask if any of you is an expert in field of AI? official expert?

but this is a workhorse.. nothing to carry around a lot

if it's about training a model or some surface level shit i might be able to help

AI expert certifications are a dime a dozen anyway

thinly veiled "come, join the hype parade"-recruitment stickers

no. i kinda need someone to see my research work on agi, neural interface platform, nanotech or robotics (any one of them) and ask them if they can vouch me. (i am sorry, i know that its selfish)

yea ik

woah woah woah

?

nah too much for me to handle 😔🥀

gl w it cuh

srry. i cold mailed like 30 professors but none of them replied : (

thankyou

das sad man

"agi, neural interface platform, nanotech or robotics" this is a wild mix btw

I'm sure there'll be someone here

yea i know 😭 but ig thats what it is. i got proof for all stuff but i need rec letters and vouches for unis so yea 😭

i hope so

"Proof" you say ^^

oh well I shouldn't comment, since I have no intention to help out

a working agi prototype. blueprints of neural interface, nanotech and robotic stuff. and then a complete framework for agi and neural interface

nah its fine. criticizing (if thats the right word) something helps it improve

nah

Can anyone help me with installation of Kali

ive never done kali b4 but im sure there are vids how on yt

https://www.kali.org/docs/installation/hard-disk-install/

Forget about videos, forget about chatgpt. Follow the official documentation exactly. Lots of people manage daily

he said the docs didnt work

He also said he looked all over the place.. I know the type, they simply did not follow the official guide, simple as that

k

im not good at reading ppl idk

It's written to be followed to the letter, each and every step. We have kids that manage

So far every single time people fail because they don't pay attention or ignore stuff they do not understand

Just do what it says. From the beginning

i personally use parrot so i have no idea what was wrong with that error

When this will be resolved, it will be accompanied by "Oh, I didn't do that"

Parrot and kali have basically the same installation routine

oh

ok then

If you can't get this done, forget about kali, forget about pentesting, get a few more years under your belt. This is supposed to be the trivially easy part

oh wait

its so easy wtf

like 2 steps to install

yeah

Of course we have no idea what @stark willow is actually doing, which iso/version, whether its live usb, arm, vm, dual boot, bare metal, netinstall or whatever.. the only way to get those forward is either to find them offline and install it for them.. or keep telling them to follow the official documentation.

yea

or anydesk but im not doing that

I am trying to install kali virtual box and trying to install the vm image..... The .ova file

Great

Thats actual info then

ye

Yep

So at what step in the official guide are you

It's showing invalid file when i tried installing lasting.....it was a .7z file

vbox or vmware?

Vbox

They told us

o

what is your host operating system, and how large is the 7z file

try extracting the 7z lol

Windows 11.....3.3GB large

https://www.7-zip.org/

Just humor me .. how large is the file exactly, really look it up

On your pc

Also - did at any point windows complain about the download being possibly malcious

Tried

so you haven't even extracted the 7z yet?

After extraction i couldn't find file on my device

maybe you should look into that then

No

that isnt very normal

Yea i am looking into it

It's 3.3 GB file that i am installing

How large "exactly"

in kbs

how do i extract a .rar

on linux

Bytes.. kilobytes.. just a real number. In all likelihood windows is preventing the extraction right now. Probably quarantined or altered the contents of the zip file. It's a common occurance periodically. It is also the reason there is a section about setting exclusions on windows https://www.kali.org/docs/troubleshooting/windows-antivirus-warning/

use unrar

7zip also works

Will see this

Which is why I asked for the exact size

you could also verify the checksum of your downloaded file with the value that is displayed on the server

I don't think it's a antivirus problem

files dont really just dissapear

I will figure it out later need to sleep.....have to go to college tomorrow....my wifi is shit bcz of rains

Thats decided by checksums and log files

I will text in 4 hours

I mean after 4 hours

Ok

@fast rapids

?

how do i open unrar

i installed it from mint store

but i cant find it

what distro u on?

mint

go to terminal and just do "sudo apt install -y unrar && unrar x file.rar"

ok

it said this Cannot open file.rar
No existe el archivo o el directorio
No files to extract

i put my .rar no?

go to "cd /path/to/folder/where/your/rar/is"

ok

then do "unrar x {{filename}}.rar"

ok i did

thx

np

I need help in DFI

which dfi

that is an acronym for a lot of shit

I have .foxfitdata1 encrypted I tried to crack the password but no result

I have hw to analyze a computer DFI and I found foxfitdata1 I want to decrypt it

Digital forensic image

are you doing this on your own computer?

or do you have permission

No on VM

Yah it's an assignment not a real case

kk check the file type with "file <filename>"

File type File but when I see the hex it's pdf but with . foxfitdata1

when it just says file its not very helpful lmfao

its a pdf doc, just rename the extension to .pdf then

The first thing I done is rename it but it's still ask me for password

well i cant help you get the password but try hashcat or john the ripper

if it was well designed, it will be something guessable

John the ripper will PF ?

u have to first extract the hash

https://hashes.com/en/johntheripper/pdf2john

but yeah

pdf2john comes with john the ripper im pretty sure

after you can run john against the hash

i usedn hashcat it says no hash-mode match

you cant do it directly on the pdf

u need to extract the hash from the pdf

how can i do it ?

hashcat doesnt have a tool to get the hash i think but john has a script called "pdf2john.pl" u can use for hashcat or john

that will extract to hash for u

and u can still use it on hashcat or john

i write join file.hash and give me hash type and some random value with stl-v2 how can iknow which is the pass

nono thats not the pass its a hash representation of the encrypted pdf

so i should nano the new file give it to me

the string is what john or hashcat will try to crack against a wordlist or rules

if it finds a match, it will output the pass

but until you do that all you got is the hash

i mean i do join targit.hash then it give me john.rec just show the info slt-v2 hmac0sha and other input-encodin=utf-8

john.rec is just a recovery/session file john makes while its running, it isnt the password

it stores info like the hash type, salt, encoding, and current state so you can resume the crack later

if john actually cracks the password, it will show up in the terminal output or in the john.pot file, not in john.rec if nothings showing yet, it just means no password has been found with the current attack settings/wordlist

oh so i should setup a wordlist first

yeah

but like rackyou i dont think it will be helpful becuse my frind says he saw somepassword in rigistry so it might be one of them

u can just look one up and download it, i cant directly share it

thats probably what the assignment designer intended

try those passwords

directly on the pdf

the wordlist is a last resort

if i used forced it will take forever maybe in judgment day it will carck one lol

yeah brute forcing strong encryption isnt very realistic

they probably set it up so you will realize that brute forcing isnt practical

i know i remeber i tried to see all the cloud storge ( i get premision ) but i dint find any thing i tried to use the cookies but none

id document that

i dont think they intended for you to find the password

yah the integrity problem lol

its still a valid result

my doctor she said make investigation for evrything

Guys I'm taking the videos and rooms on TryHackMe at the Linux part now is it enough to give me enough knowledge?

About cybersecurity

yeah its a solid start

yo hw u all doing

but it isnt everything

alright hbu

doing good

it's good start but it's not enugh

nice

i am new to hacking and i just started with linux basics and network basics

any tips

after 2 week i will get pt1 then i will start leanring ceh

yah be curious

dont be a scrpit kid

learn a lil of py or bash

dont have to master

why ? i mean if he want to design his own app it's ok

you only need enough to automate some tasks

it is a good idea isnt it

not make your own app or anything

same here but do you have some knowlade in web , network , programing ?

zero

a full newbie

but i do wanna do it for real

thats pretty illegal and i cant help with that bc of rule 3

how?

ohh

saying it in a public discord server with 50k members is going to get you caught probably

oops

what difranc if i used telnet comand and netcat/

that is what i came for what should i learn and focus on

this discord server wont help you with any illegal activities

i mean is it brut force ? socail engneering ? or just saw your dr enter it

hmm i will pretend i know this stuff

lmfao

this world eve=ry move you should ask permission to do

lets do it again i wanna learn grey hat how should i start

i mean i get gpx file just i want to felet some rows i ask for it

your pretty much just saying "i want to hack but not get in trouble"

evry gray hack is black is white dude

grey hat is literally still illegal

ok white

it's just ethical terim dude

pretty much

he is lit a grey hat 😭

so like linux networks py and bash are basics?

the basic is genral knowlage about it

show some mercy on me man

like i legit need help

im telling you you should have genral knowlage

i mean you dont have to master evrything

you pretty much said you wanted to commit crimes infront of 50k people

okok i deleted that how about we forget abt it

alright then

gotta you in 4k

Wth is going on in here? You all are doing ethical things right? #📜・rules

yes ethical

the dude told us he wanted to hack into his school and change his grades or something

yo bro

chill out man

where did i say it?

u deleted it my guy

Better not. That is unethical & not cool. #📜・rules #3

excuses for not proving

k

yea sorry man i just wanna learn ethical hacking

You all @ me if someone start acting up. Please continue

zaid you ar an arab yah ?

no

so ok legit now help me tell me where to start?

what difranc if i used telnet comand and netcat/ i mean poth work similer

tryhackme

and py

thnx man

and assmply x88

bash too

ok guys

networks?

yes