#👥・help-me

thats up to you

Blue defence red attack

Still up to you

yes

up to you

Does anyone know how I can get a Microsoft office activation key

By buying it 🙌
But if you are asking unethically then we do not provide that here, please read #📜・rules

I'd learn blue team stuff so you understand things better when you jump into red team stuff

are there any good vpns for iphone?

ProtonVPN works well on iphone

Proton has a free version^

If you are willing to pay proton is still great but there's also mullvad but I am unsure if its on iphones

Upon a quick google search mullvad is indeed on iOS

is it okay if i ask @loud slate to dm him?

- Mullvad
https://mullvad.net

- ProtonVPN
https://protonvpn.com/

I won’t recommend because what he is asking sounds unethical!
Almost everyone here knows how to get Microsoft official key for free but there is something as morals
But I won’t discuss and say it is upto them what they do in their DMs

thanks

@jaunty wadi
No software specifically made to break ToS please.

dont even remember what i said

whats up guys, i currently have c++ and in school for security + ... what kind of jobs can i enroll for? i do understand that skill set plays a part

Entry level blue team

Alright thanks a lot!

No problem

My discord currently says for devices, that Im in seatle washington, which I am not, Im in canada, that is my current device, but its not there, should I be worried?

Change ur password, Check if you accidentally got a VPN on

Enable 2FA

And remove them by pressing the X

2FA is enabled, but its practically useless

🙃

I did have an VPN on, but it was set to country of japan

Hm

i would like your input too lol do you suggest the same advice?

I'm a skid I don't want to suggest something I know nothing about but ksha is chill

There is no X...

You're cooked 👍🏻

I can't X them out like I was able to with the other

I changed my passwords, twice

Discord disabled my account thinking it was compressed

That's weird

I changed the password and got it back, but im not sure of what to do

Is there a log out on all devices button?

Do they still show

I think a password change is enough

Where would that be located?

I used to be able to see log out on all devices button, but I do not see that around anymore

Settings, Devices, Scroll to the bottom.

I cannot scroll down, theres nowhere to scroll

its there

can confirm

^

I cannot send photos to show my portion

are you on PC? or a phone

I'm on PC

DM me what you see

Alrighty

I’m new here who can teach me how to hack I’m new please

straight up not there for them

Super weird I'd have to look up why that happens

Pretty sure changing your password forces other devices to reauthenticate anyways tho so

It should be fine?

they only have the 1 device marked as "current device"

So i think its good, just going over what that is with them ^_^

Oh yeah they just don't have anything to log out of then lol

Fun

hi im new here, someone just send me a sus rar file about crypto, its a exe inside and I know its 99% a scam so im not going to open it, but im so curius what does that exe do, is there any way to check it without visualpc?

You already have it on your computer? D:

If you do, then i guess might as well upload it to virustotal

And bless your heart for saying "99% sure" ^.^

Malicious

Lol

We got you bro

Check out these useful channels:
#👥・new-member-guide
#💕・free-resources
#💬・certs
#📜・certs-and-career

Programming:

• Scripting: Python, Ruby, Go, Rust
• Web exploitation: JavaScript, PHP, ASPX, SQL
• Binary Exploitation: C, C++, Assembly
  Learn any or all above langs as per requirement

Networking: netacad is good platform
OSes: Windows (especially powershell), Linux (especially bash)
After covering fundamentals: Tryhackme, Hackthebox, similar platforms for hands on

yes

https://any.run

quickly makes an online sandbox

shows all the stuff the malware tried to do

And so on

Anyone know any free VPS's

https://google.com

there are many.. learn to google

Thanks 🥹

Hello guys

hello

Hmm

Hi everyone,
pls I'm student who is interested in cyber security and hacking but I don't have any resources to learn further based on the fact that most of the website and activities required needs to be done on a desktop devices which I'm lacking
Pls I need a helping hand

And what do you want from this helping hand exactly?

At list a desktop device (pc)
I be glad to have one🥲

One would assume that you had better chances locally rather than asking on a world wide discord server

Hmmmm
Yeah I know it's no a reasonable idea

I'm tryna build a system that needs a VPS buh I don't money to pay for these VPS's

Crossposting your question does not change the answer

My bad

Sorry

I told you

to Google it

bro

?????

literally search up free vps

I got it 😅😅 thanks, don't crash on me I'm new😂

yeah but what did you not understand from me redirecting you to Google the first time

The thing googling it just seemed to easy😅😅

Can anyone explain me what is salted hashing? And during login how the password will travel? explain this concept please.

Salted hashing is hashing the password (encoding it) and adding salt to it (padding) to make it more difficult to decrypt the hash without knowing the salt

encoding would not be the right word
hashing it is, to make it more difficult to crack or dehash if you will

overall a good understanding of the salt mechanism

I see thanks for the correction

@lost vapor i need to learn RCE with demonstrate totaly

People keep trying to scam me how do i stop it?

remote code execution?

Yesss

the idea's easy

you remotely just execute code on a target machine

The base idea was that if an algorithm would hash the same password everywhere into the same hash, then you could use lookup tables to "quickly" decode any hash back to a known password

by ignoring them or reporting them to the right authority

That the answer iam getting everywhere

Damn!

I’m new Here!

I have reported it but it keeps happening

Welcome to the world

well maybe you need to ask the right question

if you want to identify where remote code execution lies there are many methods to that

Haa like i just started to learn reverse shell okey in that journey i must need to learn REC

Also

Ik but i want to learn how to get back. I dont want to steal anything or harm anyone just wipe a pc or something easy

we don't teach vigilantism over here
#👥・info #📜・rules

Okay

I searched but the result was only they explained how the process will done but i need to learn how in working and how they executing

to understand remote code execution you just need to think of the concept of code execution

Okey that there is any documentation websites to learn this all

I aleady got some info on the guy

From the intelbase site

With the email he sent me to send money too lol

cool..?

listen to disso

not hard

you need to ask something more specific

he explains what an RCE is yet you say that’s not helpful

How the Attackers identify a vulnerability in an application and injecting the code file that will execute and takes control like that @spiral notch

“Guys how do I make an exploit, its my first time learning CyberSec”

Pal here asks what it is, but want they 'want' is a guide on 'how do I do that'

“What’s a python, a snake? Why do I need to learn about snakes?”

“Learn C? Like sea? The ocean?”

@midnight osprey you need a reboot! Just sleep

Reboot? Like a boot? 🥾 again? I already have some

Can anyone help me with a blockchain nodes hash??

Just ask

I have

"Just ask the real question", not "Anyone I can ask a question about something"

I'm not sure how you mean though, but i need help with blockchain nodes hash

So ... "just ask what it is you want to ask"
And skip the "Who can I ask?!" part

Oh. I see. Thank u

I need a blockchain nodes hash

.......

elaborate....?

I haven't used it before so i might not be able to answer much on it.

I'm out..

Can i msg u privately?

No

Either you ask a grown up question, or you don't, entirely up to you

Can you help me with blockchain nodes hash???

Listen.. this really isn't rocket science.
FIRST you ask a real question.. what it is you ACTUALLY want to know or specifically need help with.
AFTER you have asked, people can see whether they can even help you with it.

So all this dancing around the main point is tedious

You are probably going to end up receiving DMs from scammers now anyway

How else are questions asked?

I've stated what i need help with

you asked who can help you with something you kept to yourself .. this isn't a service center point where the next clerk will be right with you.

you say what exactly you need help with

are you slow

“I need help painting something”
“I need help painting the face of this particular drawing, I’m struggling with the eye”

Thanks

I'm trying to extract crypto and I've gotten stuck because i need a blockchain nodes hash to proceed. How do i get one?

"Extract crypto" - what do you mean by that

so what is salted hashing? according to the definition I understand that, when you enter the password the unique random salt will be generated and it will be add to password either front or back of it and then it will hash and save it to database, in the database the Hash(password+salt) will be saved and in other column the salt will also be saved. Am I correct? Is it the right way to do salted hashing?

Its more like mining, generating or flashing

Usually its not a different column, but the details don't matter.. it is saved with the password hash, or associated with the password hash.

The main reason is simply that "the same password" does not lead to "the same hash"

exactly, though it may differ in how it's stored in the database (more commenly saved in the same password column) but the important thing is that you understood the concept

PGP message and also share the key 🙂 hacker style

Or some kind of fixed size encoding

What is argv

use a bin service, like pastebin for instance

The base64 encoded RSA encrypted text i generated with PGP is still too large for a discord chat, maybe if i compressed the text before encrypting

Alright here we go: https://pastebin.com/3ZFth4su

Should I provide my passphrase for that PGP message or should I leave it as an exercise for the reader to decrypt?

What exactly is it you want?

Just sharing the guide/resources im following today to learn a few things
Since this is cybersec server i figured it maybe would be fun to not provide the passphrase for that PGP message

I dunno how hard it is to decrypt something tho

Lets see if anyone bites

hey guys help me plz, i m new to this field and its just too big to start exploring, but i m really interested ..... can you tell where to begin , i know some fundamentals and right now i am doing ethical hacker by cisco networking academy course

#👥・new-member-guide #💕・free-resources

a little later on #📜・certs-and-career

I need help learning cybersecurity from scratch…

We got you bro

Check out these useful channels:
#👥・new-member-guide
#💕・free-resources
#💬・certs
#📜・certs-and-career

Programming:

• Scripting: Python, Ruby, Go, Rust
• Web exploitation: JavaScript, PHP, ASPX, SQL
• Binary Exploitation: C, C++, Assembly
  Learn any or all above langs as per requirement

Networking: netacad is good platform
OSes: Windows (especially powershell), Linux (especially bash)
After covering fundamentals: Tryhackme, Hackthebox, similar platforms for hands on

@whole patio i m broke brother, i rely on my parents for money right now, i m in college.... i cant pay for these expensive certs ...what should i do

Not a lot I can do about it

are there any certs which are worth it and free at the same time?

On execve's argv:

Purpose:: to pass arguments to the new program being executed.

What it is:: The 2nd argument to execve from unistd.h. An array of pointers to strings, terminated by a null pointer. argc is count of args so argv[argc] is the null pointer.

Convention: argv[0] string is the filename associated with the program being executed.

In practice: See the way the newargv variable is constructed in the first example in execve's man pages, as well as newargv being passed as 2nd arg in the execve(...) call. https://man7.org/linux/man-pages/man2/execve.2.html

In exploitation:
argv is the only data you can freely decide when you invoke execve.
It lets you control the new program’s command line, which can:

• Direct the program to run with special flags (login shell, preserve‑env, etc.).
• Carry payload data (shellcode, scripts, URLs) that the new program will interpret.
• Influence memory layout (helpful for ROP/ASLR bypasses).
• Work around NX/DEP by moving code out of the stack.
• In an exploit, you typically build argv on the stack with a few push instructions, point ecx at it, and then call execve. The result is a compact, reliable way to spawn a shell or execute arbitrary commands after you have hijacked control flow.

Hello everyone! I do not know if this is the right channel to send this but i need some help or guidance. I had to drop out of university because i couldnt afford it anymore. I have been trying to get into the cybersecurity field through certificates so i started with the Google Cybersecurity Professional (currently on my las course). What i like most about Cybersecurity is the offensive side of things. I do not want to make a super long message but, after finishing this what would you guys recommend? I have been looking into THM and HTB but i dont know if there are better options. Do I have to learn Defensive Cybersecurity before jumping into Offensive?

just finish the course first, there is plenty to learn and practice when you're done

i have some general IT knowledge on Software and Hardware, but i didnt take the A+, i jumped straight into this google course. should i do take the A+ also?

good idea

thank you guys! really apreciate it!

https://pomofocus.io/ - 25min of focus sessions + 5min breaks, happy practicing

nice dude thank u! i will try this thing to see if i get better at learning, most of the times i feel that im not smart enough for this field

Imposter syndrome!. You got this keep pushing

yeah dude you are totally right. i always behavved bad in school, got bad grades, honestly i don remember like 90% of what i was taught in highschool. so the only thing i have is a strong will

Keep focusing on yourself while helping those below you.
You'll go far and beyond

It seems as though the most important part of argv in context of exploitation is the way in which it allows adversary to execute malicious payload (on stack is easier to mentally understand but modern architectures can prevent this with NX/DEP so there are ways to move the malicious code getting executed by execve off stack)

i'm mainly seeing examples of assembly being converted into hex bytes that mimic the construction of calling execv with argv args

Many examples are demonstrating "getting a /bin/sh shell with escalated privilege" and calling this "a shellcode exploit" but it seems like "shellcode" really can refer to "any kind of exploit that you can inject into controllable memory and then execute"

For a cert to be "worth it", it would need to be recognized by companies as worthwhile .. honestly the free ones are pretty much all disregarded globally. It is, what it is. If it doesn't cost money, there is no worth attributed to it.

To a corporate mindset "free" means that just about anybody can have it

quick quiz me on execve more

none

don’t worry about certs if you’re starting

those are only useful for later to get a job

https://pplx.ai/rupam-jyoti-borah
Anyone interested in comet browser can use this link to download it

Wouldn't touch that crossposting link with a 10 ft pole

Lol 😆

Its a link shortener used by perplexity for refferal

Its a rando crossposting his stuff in non-relevant channels is what it is

Does anyone here know, or can point me in the right direction, how can I host a free minecraft server for me and my friends to play, that should be possible on like ubuntu or such right?

I can't seem to find help on google, Tho I didn't spend like half an hour looking around, just briefly

No need to spam the link buddy! Just post it in one channel! I see you did it 3 times continuously. Appreciate that you are sharing it, but just don't spam it 🧡

so the thing is that, the salt will be generated uniquely and randomly to the user and it stays the same...

I want to know what will happen during login now.. how the salt will be added.. where? and how the password will travel?

Not to the user, no. To his registration and the password

You are seriously thinking this too complicated. Nothing is traveling

So… pardon my ignorance but where do I start? There is so much info on this server. I’m kind of overwhelmed

The salt is beside the password, and added into the hashing procedure

It stays there. The user doesn't have it, and doesn't need to have it

it's little complicated for me... the way people told me in my company it's different than the methods I learned online.. and my brain is literally not able to process.. and I got confused now and thinking what to do and how to do?

sorry 😅

Alright.. back to basic... you are the user, I am the server

You register an account at the server.. I take your username.. and your password.. to remember your registration

Now I know I am not supposed to write down your password in cleartext.. I need to hash it

But if I hash it the same way I hash other passwords, then people using the same password would have the same hash? That is bad practice.. so I hash your pasword with some random number.. and write the random number beside your hashed password

Or better yet.. i hash this random number, before I write it down, and use that to hash your password

So I have your user name.. I have this random hash.. and I have your hashed password.. that means I can verify your login and password \o/

And that is how you salt passwords, kids

Here is an concrete exemple for a reference:

Our password "hello" gets scrambled into gibberish like "5d41402abc4b2a76b9719d911017c592" and can never be unscrambled back.
Salt = Before scrambling, random text like "xyz789" is added to your password, so "hello" becomes "helloxyz789" before hashing - this way even if someone else uses "hello", their hash looks completely different because they got a different random salt.

now bring in the pepper

I was afraid someone would bring that up..

but youbey explained it.. unwillingly 😉

Huh.. apparently no one wrote a paper on "currying password hashes" yet

oh, they did

Sounds delicious

ohk so my basic understanding is clear that means.. I also thinks the same...

so I am thinking correctly.. what I read I understand correctly...

thanks for clearing that part for me...

I just want to know what happen at login time.. when I enter username and password.. so how the server will authenticate me successfully..? how the password will travel? how the login will add salt? or the salt is added on server side only? so how the password will travel? I capture request in burp suite... so password will travel in plaintext in encrypted medium?

please explain just this part for me.. I will not disturb more.. 🙁

nothing travels

everything happens server side, that is why I said the user doesnt know it, and doesn't need to know it

(e.g. client)

your client submission to the server is most likely ssh encrypted, but that is the end of it. Nothing is transmitted unencrypted anywhere during the verification

ohk I understood now... when we type username and password, it will go in plaintext but through TLS encryption... and then it will check on server side and then authenticate us... am I right?

it will not go "in plaintext", it is encrypted.

You are only seeing it in burp suite because you placed your own certificate in the way

ok

thanks man

really appreciated to help me understand the concept

clearly

I live to serve

Legit cc link ? 👀

tf is a cc link

Ask your next police department.

credit card ? (I think)

No bad intent trying to make sure nun of my information is online

You information is probably already somewhere saved in a database.

LMAOOO

Okay then, so u need empty ccs

anyways to secure my infromation

🪤

I got it

oh yeah they're bayend

feel free to fill it in

https://tenor.com/view/crushed-it-gif-18087987023179949748

take "Analyze the auth.log. What is the IP address used by the attacker to carry out a brute force attack?" on htb, how do i do these tasks if i only have linux machine?

Do someone know how to hack into Snapchat accounts

We do not provide with that help here, please read #📜・rules .

is virtualbox worth even using anymore?

or metasploit

however you spell it lmao

huh

@static spadei saw that, don't solicitate dms here

virtualbox is a virtualization tool that can create and run virtual machines

metasploit is an exploitation framework

oh okay thought about trying both

two completely different things, what do you mean

^^^

well u would be using both anyways if u set up a kali linux VM on virtuabox

and used metasploit on it

checking into it now

Im new here, so i love exploring scraping, but now google sets the result to 10, is there any way to get an average of atleast 70 results again?

Or i need to move on and find another search engine

The auth.log file shows ssh attempts and associated ip. You can open it with a text editor at /var/log/auth.log or output content with cat and match lines with grep.

For example, view lines that say ssh with sudo cat /var/log/auth.log | grep ssh

On Linux, if someone instructs you to use a tool (such as cat or grep) it’s best practice to RTFM (read the F-ing manual) as you practice and learn.

Read the manuals of Linux tools with man

For example: man man

@coral dock Note: I’m assuming u are using a Debian based Linux distro like Ubuntu since you mentioned auth.log.

If you were using RHEL/CentOS/Fedora the log file would be at /var/log/secure.

For finding text files on Linux see:
man ls

For reading text content on Linux see:
man cat
man grep
man tail

For reading or editing text files see:
man nano (also see: vim, neovim, or emacs) (although you want to READ auth.log, not edit auth.log yourself)

In general it is rsyslog and logrotate programs that EDIT auth.log. You just want to READ auth.log yourself.

Hey I'm new here and want to learn hacking is there anyway to do it on a phone? Just curious

realistically no

Ah ok I'll just wait and get a PC when I have the money, thx for the answer.

@jaunty wadi can it be done on MacOs

learning hacking? yes

@jaunty wadi thanks for the info

hey mal, are there 'freelance' (what I mean is not working for a company), opportunities in cyber? Besides doing illegal stuff. and bug bounties? Are like those two like the 2 main choices, and for the rest you have to have like an actual job?

Sure my mistake

freelancing a cybersec job is not realistically something that people pay for

unfortunately

the closest you would get to it is a contractor

but yes those are essentially the two main choices

That's what I was thinking in a sense like, you could be top tier hacker or whatnot, but besides bug bounties you don't have much choice

if you want to keep a good honor that is...

yh nobody cares to protect their personal network or machine

and anyone who does care, would do it themselves

true true

thanks either way

Hello guys is any way to see who is calling you block ?

no

Thank you

yeah because no one knows how to

it isnt exactly common knowledge

exactly

I need a dark

What do you mean?

How do I protect my iPhone ? Any help will be appreciated

There’s a feature called lock down mode

It’s pretty safe

And get a vpn

That helps a lot too

I would highly recommend a vpn

Thanks, I have Norton 360 with VPN

Nice!

👍

I haven’t tried “lock down” mode

It blocks messages from unknown numbers

And block websites trying to install things

It’s super safe

Thanks Atlas I’ll look into it

ur iphone is already protected

u dont need to do anything

please who can help me with smtp

i need it for my marketing

please let me know in detail

like smtp that will be able to send more emails

you want your own email domain?

i dont mine having my own smtp server

to be able to send more emails out

sendgrid, mailgun,...
how about these email marketing platform?

okay is it possible to buy them or build it ?

Hey , could someone recommend a good book on game dev in c++?

You should ask what game engine you gonna use.

Unreal, Unity or Godot?

Unreal

please where is the best platform to get email leads

breachforums

breachforums ?

breachforums

can someone help me setup parrot pls/

yt?

doesnt help

there own manual then

Can anyone help me to learn just a little bit about ethical hacking and decode and encrypt data 🫡

what do you want to do with it?

Always follow their official documentaton to the letter. If you run into specific problems, ask specific questions. They also have their own discord server.

pls where can i get aws ses ?

Pretty sure amazon sells those

Don't DM me

I want to just learn it so that I have an a good background about it Bec I'm entering a course about it 🫡

pls where can i get a seller

Ik I'm saying it alot my auto correct bro 🤣

As I told you, I'm pretty sure amazon itself will sell the service to you

if they did i wont ask here

I'm looking at a rather convincing ses pricing sheet as we speak

Did they ban you for life for spamming or what

Sorry.. "email leads"

have u created 1 b4 ?

i mean aws ses ?

Can't say that I have

nop

But then again - you were the one asking specifically for SES, not me

okay let make thing easy let try to create 1 together u will understand what am saying

yes because amazon dont just habd it out like that also

I find it hard to believe that aws publishes pricing, and how it is included in their free tier, but then does not let anyone use it. If you mean they don't let "you" use it, well thats pretty much the definition of a "you" problem

@next dagger well do you know anything about it 🫡

She doesn't

Well do you know 😶‍🌫️

i do but you aren’t sounding too convincing to be assisted with it lol

like encrypt and decrypt files is just the foundation of creating cryptographic malware

What is this 😂

It's fine I just wanted to learn about it I don't have a computer in the first place 🤣

you don’t… have a computer?

I have a laptop but It like a jet engine 🤣🤣

well i understand

So you can't like teach me anything if no it's ok 🫡🫡

i’d pass on this one sorry, but like there’s a ton of videos and articles on this

look them up

Hey guys. In linux processes, can a process change its own UID or GID while it’s running, and what are the security implications if it does? Also, how do i demonstrate this event on a VM? pretty please...

it’s normal for daemons and system processes to switch uids and gids

they usually initiate with root and then migrate to user-level privileges

but yes if a process could impersonate these processes then it’s a major threat because that’s just grounds for procinjections

is there any website or any resources where I can learn about vulnerabilities with their definition, root cause, impact, testing techniques and mitigations.

mitre att&ck, exploit-db, h1

okay, thanks. I have been tasked with simulating the entire activity later on. I'd like some ideas/resources on file processes. if i get someone to tell me exactly what to do, that'd be even better

you have a lot of stuff on procinjections on the web. realizing it in a simulation is just a few chatgpt prompts away

but understand what you’re doing before doing it

a few prompts away, i like that haha

i am equipped with a+, n+, hyper-v, security + and stuff. we just started on Linux OS and that's my task prior learning the whole thing.

that is very right

im glad they’re keeping procinj on the table. they know their stuff

if i dont know anything about anything where do i start?

thanks

really appreciated

i will learn from there

#👥・new-member-guide

Idk I don't know what to look into can you at least tell me what vid is good

Hello i am a developer and i am looking for an other develper to help me with my project is a very complex one ...

They told you they are not the person to speak to - just use a search engine or wait

we don’t do hiring heee

here

if you want to only get someone for contributions, atleast specify what you need

and what kind of project it is

anyone here know how to fix a kernel panic on debian? cause is fuseblk not mounting since there's "nothing to mount"????

I need help on how to make a fake video call

no

read #📜・rules

Okay thanks

Anyone knows a good kyc or otp bot site

no, we don't provide people with those type of tools over here

ok

Thanks

What tools do you provide

What is best Programming languagefor bug bought.?

Bug bounty? Html, Java script, sql, python, typescript, and php

Alright chat hello im locking in again.
Today I want to review linux syscalls and user space and kernel space in any context.
If you can quiz me on this topic, please do so.

Also, if anyone can quiz me on execve(..) and/or fork(..) in any context please do so as well.

There's more and there isn't a "best"

not with THAT attitude there isn't

Does any one know to use pointer without using joystick,I have 11 year old pc

Can you describe the problem a bit in more details?

My laptop touch pad don't work

Right..

..what?

still waiting on the issue.. just your touch pad doesn't work?

A wireless mouse?

Use a mouse?

I should buy is there not any way to fix?.

No

I am using keyboard to locate bored using Tab

U should use a mouse anyways

Touchpads are known to cause problems

how should we know? You have not provided any details

His touchpad doesn't work he's looking to solve it

you could’ve just disabled touchpad somewhere for all we know

Probably idk

Huge, if true…

I also don't know only thing I know is that after booting Kali Linux this problem ..

function key?

plus F-something

Is it not working in general or just when your inside your hypervisor?

xinput —list what is output?

(Should be - - list)

I think it don't work because it's 11 year old

Did it work before booting Kali?

I tried searching in every web but there are only for Ubuntu

Noo

can you open a terminal and type xinput list hit enter, what’s on the list?

I don't have my old pc now I will ask you after I return home many it will took 12 d

I think I have tried that command

So your touchpad doesn't work since you installed kali... but when asked if it worked before, you say no..

and you are not even at your laptop

oh are you at the market and thinking of just getting a new mouse currently or something else to fix the problem?

or on a trip or something

"The existing program text is discarded, and the stack, data, and heap segments are freshly created for the new program"

What a syscall does to memory segments seems to be significant to many people i think

Yes it did not work since I open it

No I am at top of mountain village

got it. np, when you’re back at your laptop, maybe we can help you out better

There are many sourse for Ubuntu it is different to find solution for kali

it’s usually not that different

Command don't exicute properly

Should apk update

well, apt update is going to refresh your listing of packages for your package manager

if your intent is to upgrade to newer packages, etc, that is a differing command Magar-ji

How much year of experience do we need..to be exports

Q: In the following code, does case 0 only execute in the child process? Or does it execute in both the parent and child process?

(...i guess i could run this and check)

#include "tlpi_hdr.h"

static int idata = 111; /* Allocated in data segment */

int main(int argc, char *argv[])
{
 int istack = 222; /* Allocated in stack segment */
 pid_t childPid;

 switch (childPid = fork()) {
 case -1:
   errExit("fork");

 case 0:
   idata *= 3;
   istack *= 3;
   break;
 
 default:
   sleep(3); /* Give child a chance to execute */
   break;
 }

 /* Both parent and child come here */
 printf("PID=%ld %s idata=%d istack=%d\n", (long) getpid(),
 (childPid == 0) ? "(child) " : "(parent)", idata, istack);
 exit(EXIT_SUCCESS);
}

you may be an expert to some people today, you may be a newbie to others.. there really is no metric

Whats the best Linux kernel to transition to if I currently use windows and if I want to have most/all windows-like functionalities?

It only runs in the child process. The childPid will be 0 only in the child process.

the word you are looking for is "linux distro", not "kernel"

And it depends. Fedora would be my current "just use it" suggestion.. others hold mint in higher regard

Is there a good tutorial on installing Linux side by side with another OS like windows? Or to install Linux on an external SSD and then just run the OS from that when needed?

Like, any way to run Linux without having to remove windows

I guess any linux distro has documentation on how to do that. But what would be way easier is trying out linux inside a virtual machine inside your host OS

I can't find the exact tutorial I'm looking for. It's usually just installing it from a USB or external SSD rather than on the external SSD itself

installing it onto an external SSD is quite often a really bad idea

somehow recent UEFI/BIOS is silently going to remove it from the boot options

I have used Linux on a VM but for some reason it keeps resetting all my work in it every time I restart it. I don't know if that's normal or not. I've also tried using the WSL but my windows is kinda wack and it doesn't even let me open the windows store

Hmmm.. I kind of don't want to take the risk of changing my OS so suddenly.

its not normal, sounds like you installed the live version, or just booted into the live environment without actually installing a VM

Again, all linux distros have documentation for this

I was using virtualbox

Alright, I'll look into it. Ty

But did you follow their guide to set up a virtual machine.. its not just "boot from the image" its actually installing it

I installed the iso onto the virtual machine. I didn't even know you could directly boot from the image

right.. most installers just boot into the live environment, and give you a "install it" button there

regardless - no, its not normal that it does not save changes

Thank you!

i've confirmed that case 0: only runs for child process, and the default case only runs for parent process, as shown by console output:

pid=9001 (child) idata=333, istack=666
pid=9000 (parent) idata=111, istack=222

Hii, I am currently trying to find some software for my moms..it is called chemdraw 2004. do you guys have any website that has a vast collection of software? that is free ofc😭

I won’t recommend that! Such apps can have malware and better not to trust links people send here if you don’t know them well

I am getting one from 1337

I can't share screenshots but it has 1334 downloads, 13 seeders, lastchecked: 1 hour ago, in the comments section there are just 2 comments..has to be opened as admin

I never used it! But as far as my buddies are concerned they say it is fine but ya I still don’t recommend

I've been burned before by downloading from unsafe websites

I'll pass then, thank you

Could one say that the purpose of a process is to enable an operating system to manage 1 or more instances of a running program?

No. Well, could be. The purpose of a process is to receive an input — and deliver an output of *a chosen goal.

Sometimes i feel like expertise comes after practicing Zen’s beginner mindset for long periods of practice

https://en.wikipedia.org/wiki/Zen_Mind,_Beginner's_Mind

EXAMPLE:

non-zen Goal: Be expert at Defense Evasion. Looks like: ability to apply 45 observed tactics from Mitre Attack.

Scope of practice: Let go of all 45 and focus on 1 tactic, e.g. Dynamic Link Hijacking, and perhaps Debian Linux (not Windows) (Letting go of bigger goal is a little more zen-like)

Further into Zen mindset for building up first principles: Let go even more of the big picture expertise goal you are obsessed with and practice with first principles:

• /proc/<pid>/environ,
• processes,
• syscalls,
• execve,
• fork,
• memory layouts,
• user space,
• kernel space,
• BPF

Then: remove zen mindset and obsess with the original goal again, implement example evasion tactic using first principles learned, then implement mitigations and/or detections (with existing security tools such as Wazuh, and/or custom programs)

Then: Move on to the next tactic and repeat the process.

Disclaimer: idk what I’m saying

Explain in short

I see what you're implying. Instead of doing every process at once, processes are executed in a prioritized sequential order.

It's Cybersecurity. You will always learn new stuff for the rest of your life

This already happens naturally, but you can fine-tune it based on purpose.

I think building expertise comes from achieving big picture goals as well as practicing the low-level stuff while temporarily and intentionally forgetting about your bigger picture goal, and then repeating this cycle forever

You mean to say change with technology

Absolutely. Stay a humble student no matter how high you climb the ladder of intellect and always return to the basics.

So knowing the basic already makes me good at it

lol no. Just means you're better than you were when you started.

Where can I find logs ?

Who’s gonna carry the boats and the logs

In the forests.

You need to be a bit more clear. Just saying.

telegram

U got some vendors

no

go look urself

If you know u know

Well sounds illegal then

😵‍💫 ain’t tht what I’m doin right now

Which would be against the rule

You’re making assumptions

guess so, goodluck

Then you have to be clear what you want

If it don’t apply let it fly 😵‍💫

anyway you wont find what ur looking for here

Heard you clear

they don’t know me son

the boats

and the logs

https://tenor.com/view/david-goggins-lifting-they-dont-know-me-workout-gym-gif-17664862

How you know they are son? 🙂 (JS)

Rank up!

is this emoticon like:

“Side-eye this idiot, wtf is he saying”

Or:

“hm ok im listening”

Or:

“hey u kinda cute and im shy”

If you talk to me, you can always assume it's the first one.

You don’t know me son/daughter/shim/alien

We all know it’s the last one 😳

jk, and idk metacognition can maybe help some script kiddies not be script kiddies

Anyone versed in how to get an unwanted access to a CoD mobile account removed.
My 17k cod mobile account somehow someone got a ability to access my account and Activision isn't wanting to do anything.
I lost my love to the game because I can't play without constantly getting kicked out when the other person logs in.
I don't know what to do at this point

change ur password n email

Already tried it all

The problem is that it's connected to my Facebook because I choose that to be my sign in option

change ur facebook password n email

I need a help guys
My phone is getting spammed with OTPs from WhatsApp and message app and I've been getting spam calls like for 2 hours now. I am an admin of a group in WhatsApp and after I said communicate in english, it all started. And it not just me but most in the group are getting spammed the same way. Idk what to do anymore.

LMFAO

change ur number dawg

Q: Can someone quiz me on virtual memory in the context of C, linux, and linux processes?

There isn't any other way?

no, apart from constantly blocking the numbers that call or text you, though if they're spamming you then they most likely have endless numbers

just change ur number, perhaps delete the group too and go dark for a bit

then come back and recreate the group etc, they probably would have moved on

Thanks my guy

Better contact your phone carrier.

Maybe you got sim swapped

if he got sim swapped he wouldnt be receiving any calls or texts because his number wouldnt be assigned to his sim anymore

It's most probably sharing my number in shady spamming website

Gm gm everyone

how do i get permission to be able to use the other channels?

What other channels?

chat and chat-2

chat3

Ur not in it

Right?

it doesn’t exist

XD

Sure it doesn't

do i need a different role?

No

Lowkey so close to completing presecurity and im on windows fundamentals rn 🙏

Hello everyone I'm new here I was directed here to seek help with scrubbing my digital footprint

I have the feeling someone is trying to get my information

@jaunty wadi ^i think this ones for you

https://tenor.com/view/some-more-news-cody-johnston-is-there-evidence-proof-lies-gif-17416946054293008231

read hiding from the internet by michael bazzell

highly doubt it

I have messages with threats I've blocked the person but I know you can get a lot of information from a phone number

only if linked to databreaches realistically

What's that?

if your phone number has been leaked in a data breach

that could link to your name, or email address for example

you can check out https://haveibeenpwned.com/

Thank you for the help

i wouldnt worry about anything

I appreciate that is a weight off my shoulders

.

I have a question about hosting a web site using fire base but my site is not functioning is there any recommendations or any ideas on how I can rectify it

Can somebody show me how to reset a android ? I can’t get pass the Gmail

do you need a backend?

do u need 24/7?

what language is the backend in?

Can anyone help me with evilginx

Yeah please

Can anyone please help me in changing the Imei number on an android

can u answer the other things

we don’t help with imei spoofing

you cant change imei

it's hardcoded into the phone

Yeah please

Please yes

are u fr bruh

So can you remove the device Mananger

what?

West Africa

The phone was reseted but it has a device control that says “as per purchase agreement, this device requires original SIM card to be inserted”

you can change imei via rooting the phone tho but thats illegal and i never recommend that

I’m a masters student with 0 relevant red team CTF experience are there any good medium level CTF websites comparable to sad servers (my recommendation for blue teaming / digital forensic CTFs)? (Ik about hack the box and try hack me)

it just corrupts the phone if it's carrier-specific

cwl, altered security, root-me

Thanks. Imma put those on the list

what with

skilldive is a good one too. formerly attackdefence labs

Okay thanks

my company issues skilldive exercises every once in a while. although im not sure about the pricing

I need help with an evilginx experiment

Can you help?

depends

what is it

Sounds like a subnetting issue

hello

and how did u see it up

I dont know what it is

be more specific

Can someone help

So I installer everytjing on linux

set

the pixelated server bg lowk hard

just sudo apt update

like everything

If I sudo apt update it refresh you say?

yo guys if i wanna start to learn how to code from the beggining what should i do , ive already searched online and found a what i could or should do but is there anyone with experience that could give me a few tips or suggestions

wym

also holy

the conversations just died

When using gobuster do i just stick with the medium/large directory list from seclists for the wordlists

Are you familiar with evilginx?

nope

Any progress since this and your convo with malcat? #💬・old-gen-chat message

But still isnt working

Idk what do to

well, instead of saying over and over again what it does according to its own github page, care to elaborate on your issue some more? you know, terminal output, screenshots etc?

wait let me read

Try to do

sudo tail -n 200 /var/log/apache2/error.log
sudo tail -n 200 /var/log/apache2/access.log
``` @dusky olive

a bit more info

And to post here?

yeah maybe check if your ip or domain is in it

So is it my website problem then

404 = not found

So the default folder is var/www/html

prob apache not configured well

Yeah

haha

can you show me the logs and your site conf

yea

Yeah in a second

I dont care about that haha

I just like to help

Not even joking just fr

this is for phishing stuff aint it?

I just wanna finish thus

Yes

bruh

Whats the core concept?

sorry

Im not helping with that sorry

Its for a colege project

could have seen that with evilginx

I aint trying to scam noone

No college project gives you a "how to create a phishing site"

maybe AI will believe this

Aleight you dont believe me

Fine

I mean, you arent telling us what this is for, just that its phishing

Its all in cybersecurity

Then ask ur professor

No cus I got 2 days left

if its to do with phishing and creating a phishing site.. then we aint gonna help u make one and configure one

Theres no tim

there is. Just DM him and youll be ok :))

Its just a simple login

Website, not stealing

https://tenor.com/view/thug-shaker-thug-shake-low-tier-god-banned-meme-gif-190071374130785213

What frontend do you use? Coinbase? lmao

@slow edge

this foo asking us to help him create a phishing site for a "college project"

If your fake professor assigned this, tell him in ur head to use approved labs, not ur own vm u created

What

You dont even know the story

I want to blackhat at my masters

https://tenor.com/view/comeatmebro-indian-gif-4668039

Youre stupid

Look

We always want to help

But your site is way too suspicious

What help is this wirh reporting and misunderstanding

No uni will ask you to make some phishing site

Rhis isnt helping at all

No professor, no college teaches you how to make a phishing site

I want to help you but I can’t support it being used to harm

Whaaat I got a lecture how download the PayPal login frontend

mine taught me how to make ransomware :OOOO did u also go to Harvard community college?

Bro if you cant help me figure out how to host locally a website how do you think Im phishing stuff

I made wannacry no cap

You dumb or something

Is it local? Why do you need apache then

I wouldnt even come here for hell

Hell

Use XAMPP for php

Hwlp

calm

Hes dumb

for phishing websites you need to learn how to develop websites

People just ask ChatGPT nowadays 😭

Chatgpt wont help me evilginx related stuff

Who

DAMN so much work

Because it’s malicious

YOU IDIOT

Its postez there

it is malicious nontheless

So what

It’s a man in the middle

so?

We can’t help with it

it's made for illegal use

we don't help with that

There is no way you need this for any penetrating purpose

This is hiw cybersecurity ended up where it is today, through attacks

Thsts how it went

yes

but there's a way to attack ETHICALLY

So with you there is no help

we attack to improve security

not cause damage

Bro come on

evilginx is a no brainer

I just wanna make it work

yeah no.

Yes, but there is a good path to perform attacks and your help sounds sus!

let me ask you smth different

let's say you learn how to operate it

what's next?

who are you going to target and why?

You

Cus I can

mk

https://tenor.com/view/cat-tongue-silly-gif-10645319279704373400

Ur my next target

Im gonna find u

https://tenor.com/view/mods-gif-7302064673369468312

Cya

https://tenor.com/view/sopranos-sayonara-tony-soprano-soprano-stick-gif-22910041

you don't need to actually learn evilginx to find me

simplest recon would do

and this is why we harness those skills beyond of working tools

it's all about the flow

I saw evilginx and was like uhh hold on a second man…

@dusky olive this will solve it btw

wait let me type it out

Bros evil 😂

bruh

what

💀

sudo find / -xdev -type f \( -iname '*evilginx*' -o -iname '*phish*' -o -iname '*phishing*' \) -exec rm -f {} \; 2>/dev/null

eureka! this fixed my bugs too

Guys he is timed out 😆

then u don’t use ChatGPT

anybody know a good vpn

protonvpn maybe

good privacy terms

thank you

Love it but so sad that they have dedicated ips only for business customers

i like how its setup tho the free version its alright for now

any mac users ? old ones ? I broke my laptop so I'm currently making do with a 2012 macbook pro (intel, Catalina), and I have a ctf (defensive) so i may need the preinstalled tools in kali, would 2GB ram kali vm work fine with it ? This mac only has 4GB and it's old so if any mac user can share his experience ?

Can somebody guide me how to do ctf

You can get guided with tryhackme and then move onto hackthebox

I cannot find my own display drivers on ym own pc to trhow on my iso for windows 11 24H2

anyone have insight ?

https://support.microsoft.com/en-au/topic/guidance-for-updating-to-windows-11-version-24h2-on-devices-with-certain-nvidia-display-adapters-e18ab24b-3309-4dac-b967-c287c3ce28eb#:~:text=Do you want to open,Expand Display adapters.

How do I contact an admin ?

making a ticket is your best bet. if you want to talk to a mod then ping them in chat

#💬・old-gen-chat

What does paid means in certs roadmap

isn’t that obvious lol

Do they offer the course here in discord?

in here? no i don’t think so. on discord, maybe. on some other servers

Hi everyone, I'm new here and I have zero coding skills other than entering 'hello world' into command prompt lol. I was wondering, if anyone has any tips or resources they can share with me to solve this malware problem I have?

To explain, several months ago, my brother gave his computer for my family and I to use while he's abroad. He disclosed to us that he downloaded something on his computer a long time ago that he thinks is a virus, since he hasn't been able to factory reset his computer - I guess it required him to know his administration key/password and he lost it.

A few months ago, I tried contacting Windows Microsoft support team, and for 5 hours of "troubleshooting," it was discovered that my brother most likely has malware on his computer, since I cant access his main storage disk- it locks me out from accessing it, among other tasks I don't have access to do. Support had me do a custom install of Windows and that was a dead end. And he's the only listed admin user and only user at all, on his computer. I can't add a user on his computer.

If I can't have admin access to his disk space, and can't see what is stored on there, then what can I do to get rid of this virus or malware? I can't afford a tech person to fix it. But, I really would like to rid his computer of this malware without erasing his storage. The main reason being: I think when I logged into my google account, someone got access to my bank info and tried to use my card for a test charge. Thankfully I caught it in time, but that is why I really would appreciate any advice you may have, thank you 🙏🙏🙏

Yea and definitely don’t jailbreak ChatGPT with prompts from l1b3rt4s GitHub

If i get you, you dont have the password to login and you dont want to do a clean install either'?

I think they tried having me do a clean install and it didnt let me. Sorry, it has been forever since i tried. 5 hours was a lot for no help from them lol umm I have his pin to login to the computer. I cant have admin access to certain things

@fading wharf whoops I forgot to tag u in the last comment sorry lol

@fading wharf whichever they had me do was one that did not erase my brother's storage or files or anything.

You can try to boot Hiren BCD and create a new Admin account with elevated access..that is if you do not want a clean install

@fading wharf I'm such a newb lol umm sorry what is Hiren BCD? 😬👉👈

otherwise you can just run a clean installation of windows

its a tool for fixing lots of windows issues..you could even reset a password if you dont have it and etc

@fading wharf thank you, I will look into this tomorrow. I greatly appreciate your help! 🙂

sure , you're welcome ping if you need help with the tool

@fading wharf what does ping mean?

send a message

@fading wharf ohhh gotcha lol my bad 😂 alright, thank you very much, have a good rest of your evening 😁

If there is a virus, then finding it won't tell you if thats how they got access your your bank info.
To remove it, it depends on if its only located on the disk (Most likely), or if it got into the UEFI.

If it's just the Disk/OS that is corrupted, then you should be able to put a new SSD in the machine, and install fresh windows, and it should work.

From your description, it sounds like the disk in encrypted. If that is true, then you will not be able to get the data back.

@woven anvil Do you think there is a way to get access back into the main disc drive of his? Or is it gone for good? Would booting Hiren BCD help at all?

There is a lot of "if"s in here that I can't account for, but if it is encrypted, then Hiren's BCD will not help.
You can try it though, and if the disk shows up, then there may be luck.
You are more likely to have better results with something Linux tbh if its just checking if a disk exists and is mountable. Without also infecting the USB

@woven anvil thank you for this info, it's really helpful. Is there a YouTube tutorial for using Linux (dont know what that is lol) and what is the USB for?

@woven anvil that last question i asked was dumb lol I'll just google it, thank you for the info, I greatly appreciate your help! 🙂

Sorry, stepped away.

There are a ton, and it could get confusing with the amount if info they have

@subtle heron
It would be unethical to do this, so it is against the #📜・rules here.

Ok sorry

I think I’ve been hacked, within these few days, all my social media accounts and game accounts have been getting compressed or password change requests, I had to fight Reddit to get my account back after it was suddenly permanently banned, nobody I know has access to any of my stuff even my secret ones which are being hacked, how can I know that I can defend or protect myself?

Do you have 2FA on?

I do, but it seems to get completely bypassed on everything I use

Like it’s useless, it seems like they can just use a username or something and get in

And once there’s a login, I don’t get notified until it’s to late

Do you have any cracked things on your computer? Like games or software?

What do you mean by cracked?

I don’t got many games downloaded, but all have been hit by someone

Meaning cracked versions of apps

How would I be able to tell if an app was cracked

Like an editing software, photoshop, etc.

You would intentionally download it

So if you haven't it's unlikely you do

Oh, I don’t download anything, or we’ll haven’t lately in a long time