cryptography will require lots

Ik but I don’t know why math scares me a lot The thing is during my school. I have performed very bad, but I kind of want to improve, but maths really scares me specially calculus. The advice you gave away your I got this very same advice. I was asking Perplexity. AI

Hello I'm new here

perplexity is the worst ai

also u won’t need calc for cybersec ew

dw

😭😭 I got the pro subscription of it and I was using Claude 4.5. I guess in Perplexity Pro and it told me. I would be needing calculus for cryptography to be accurate. It said discrete mathematics. I might be wrong is discrete mathematics calculus only right?

No is not

Discrete math is a different field

Does anyone know of a way to hack back into an old facebook account? it's my account from years ago that my ex locked me out of I can't remember the email and don't have the password anymore because he changed it and never gave it to me

we don’t help with illegalities

its my account? so not technically illegal

its your account but its not your servers

facebook still owns the accoount and youd be hacking the entirety of facebook. not just your account

Oh ok that makes sense I didn't think of it that way. is there a way to figure out what the email is? if I knew that I could get back in by using the email

you can attempt to contact facebook support

otherwise no

Oh ok well thank you anyways lol

Can you please guide me for the mathematic portions like I know it’s lots of work, but I really have no idea. Could you just really tell me what are the topics in mathematics like chapters for example, linear algebra or probability of statistics like what are the topics I need to cover in mathematics so that I don’t face any problem in future for cyber security

I don't believe there to be such an immediate correlation between math and Cybersecurity, unless you go into very specific fields.
My view with a math degree might be biased, but I wouldn't worry too much about learning all that prior to computer science or InfoSec.

Can I do both blue and red teaming

sure. there is in fact a thing called purple teaming

depends on what field

in cyber

youre doing

ive said that already

Yoyoyo

I Need some help

I'm seeking for a script maybe or something to search the entire internet for a TV show/film

The word you're looking for is "search engine".
I believe Google is still popular these days

Nono u're not getting me

I do

Yeah actually u're making me think at dorking

I'm searching an italian series from 1861 hahahaha

It's pretty hard to to find It

That seems... Quite old for a TV show, lol

Yeah

Gf mom want to watch It so i need to find It😂

Wow, good luck with that.
That might almost be a project for IRL search, antiquarian shop, library, that kind of place

Hello, months ago i was very interested in cybersecurity so i started to watch some courses about penetration testing and yes i got the basics and i learned how to use some tools like nmap, metasploit, sqlmap... i learned a lot about tracking, backdoors, footprinting, telemetry's and i became so careful with using apps since then, after i just lost hope and i stopped learning because my path wasn't clear, i didn't know how that will help me in my future especially i'm still studying. i just need some advices guys

#👥・new-member-guide

It's a structured path

i almost did all those THM rooms

Htb?

Portswigger?

@slow edge

sus

Ya I handled it

He posted it in more channels watch out

He is gone 🫡

https://tenor.com/view/lego-batman-salute-smile-greeting-gif-17150810

Hello, I'm trying to learn kotlin for app development are there any sites I can use to find projects for beginners.

GUYSu, i needs help with a galaxy tab a9 x110

ts is stuck in fastboot mode what do i dooooooo

it belongs to a fren and he want me to give it back to him on monday

Which channel is for OS development? Or where can I find people in this server who are interested in OS Development

We don't have specific OS dev channel, but we do have places like #😎・systems #💬・programming #🤖・hardware-hacking where you can find people interested in OS development

https://github.com/solygambas/kotlin-projects

Thank you

Can anyone help me bypass double counter alt account checker

we don't help with unethical activities

But there are black hats here

doesn't matter, rules apply to both

and don't get scammed in dms

I know that

So black hat is legal ?

A simple google search would say black hat is illegal! Ya there are all hats here, but they all follow #📜・rules and if you want to learn cybersec (legally) then you should also follow the same rules

It's always confusing to me but I am cool with it

It's like teaching illegal things legally

if that is confusing to you, you really need to learn more about that craft.
It's like saying a baseball bat is illegal because you can use it to assault someone, and you "legally" teach it during baseball

just cuz some of us are blackhats does not mean we will help you with illegalities

especially not in discord lol

hey @minor blade @shadow fractal @ripe panther any chance I can get a perma link for this server so I can share with my college club

oh wait, your server allows me to do it. nvrmd.

Hey everyone
So I am in my 5th semester of my graduation and now they started the cybersecurity now and am more interested in it from the beginning but I need to pass and complete my remaining subjects too so am not started CS now I need to do something in this Cybersecurity for my portfolio so any suggestions,
I want to do projects and research also any insights of this also.

Thanks in advance

#👥・new-member-guide

Thanks for your help, i need projects and research. I mean what projects help to build my portfolio and research topics .

It depends on what team ur interested in

I would highly suggest googling some labs or on yt

Hello I'm new and I will like to be tought to be a black hat

that's illegal, you will not receive help for that here, and the people that DM you are trying to scam you

what exactly do you picture when asking to become a "black hat"?
Cause if you actually want to be a criminal, asking on a public Discord server is a poor choice to start with

kk ty @feral lintel

i just need help recoverying the email without getting the police involved

google support aside there's little that can be done

This !!!

If they are anything like yahoo they will tell u tough luck make a new one just went through that

No #📜・rules

"....without the police getting involved" is a no go anywhere on Discord, fam. fix your comsec

Thanks brother

Hey guys! Im from India and a complete newbie, I want to learn hacking and stuff from you guys, is there anyone that can help me or guide me not for cybersecurity but im really inclined towards ethical hacking and stuff

you want to learn ethical hacking, but not cybersecurity? Did I get that right?

well, there is something like #💕・free-resources

i wanna learn aswell

#👥・new-member-guide is also quite extensive

Not like i dont wanna learn cybersec its just that I really get a adrenaline rush when i hear oh this guy hacked a website, oh that guy got into a company’s database like its really mesmerising for me so yea

huh. well, if you want to be on the news as a criminal, not sure if we ~~can ~~ want to help with that.

but CTFs can give you quite a rush, too

Not as a criminal but like recently one of a guy in my country found an issue wherein Nasa had easy access to its database so he reported the vulnerability and got into the hall of fame

gotcha. like a bug bounty hunter?

Yeaa exactly like that

well there are tons of resources in those channels I linked, you could take a look there
personally I'm also a big fan of the Hack the Box platform

Sure Ill check on that! thanks alot!

So if someone did help me it's illegal?

Wdym

Nevermind

no stop asking ffs
if they could they would just report it to our bug bounty program
not be hanging out on discord

@torn harbor
Please stop asking this #📜・rules
Final warning.

what’d he ask

the usual, hacking google kind of stuff

"for learning purposes" I believe

something about hacking gmail

ofc lmfao

which is ironic bc i literally work for them

me and a lot of colleagues would never work for Google even with good conditions - the carelessness of big corps about smaller employees is insane, as well as privacy concerns and disagreements with surveillance expectations and goals

yo @dense mortar can you get my email back for me?

no, he will not

no i don't work in support
you'd be surprised how many people report to our bug bounty with shit like this
like how is bug bounty easier to find than support

congrats i guess
but i like working there and i need money

fairs !

I use windows 10 on the site a had about a tool for brute-forcing called dirb, I want to ask is it like and application or it a langues built in site the web to access infor.

my first infosec job was at a tech megacorp. i don't regret it at all, i wouldn't have my current career without that job. but i also wouldn't want to work somewhere like that again, being a numbered cog in the machine sucked.

what you said is hard to understand but you might be talking about dirbuster

Yes

megacorps vary based on which corp and which team and which role

Is dirb like a web langues built into a website or is it an application

https://www.kali.org/tools/dirbuster/
https://github.com/OJ/gobuster

Its a command line web content scanner. One of many tools that all do the same thing. Looks for directories and files.

I wanted to know if it's can be installed to a computer like every other application or whether it on a website content

their message answered that. you can also read the links

yeah, i loved my team and job, but ultimately we were still cogs. whole red team got laid off and everything we built wiped, just because the stock dropped a point

at a much smaller place now, work isn't as fun (blue vs red) but i have way more impact and company seems to care more about employees

Thanks all I understand it more now it a Linux application I was using window to search that is were I was stocked out

gobuster has windows releases

I try but can't download

why not?

I visited the website you sent for me I don't see the download link of the gobustet

https://github.com/OJ/gobuster/releases

can someone point me towards the nonce section

the what now?

that word has some vastly different meanings, just from looking it up on Wikipedia....

in the html context

phew, much better than the British slang meaning
I'm afraid I can't help you then ^^

Thank you I have downloaded 6

6?

Hi guys! early on I was doing some kind of ctf and got to a path into the domain that has a shell.php. But now that path is behind a cloudflare. Is there a way to have it available again? or to bypass cloudflare :c

what ctf?

shared

Hey guys I need help with md5 stuff

Care to specify?

Shared as in other users are using the ctf? You're probably seeing someone else's php shell upload. Your best bet would be to figure out how they got it there.

Unless youre referring to the htb box named shared, in which case its a retired machine and has write ups online.

Hey! How you find some or the location of the place where some is trying to charge your debit card? I haven’t it physically with me but someone is trying to charge my card somewhere else

Contact the bank they can tell you. And lock the card immediately

Is it worth studying C++ or Python for pentesting/red-teaming?

Python for a lot of the automation

if you’re going into red teaming

it doesn't matter

I’m trying to get an invite code but it keeps coming up wrong they have given me the code it’s in js

Is it some kind of cryptography competition?

Its for a job?

You are being very vague, even if we knew that this was for a legitimate purpose, you haven't provided any information that would make help even possible

https://offsec.jobs.division5.io/challenge.js

I can’t send photos here?

It’s a graduate position I just can’t get in there tbh I don’t have much experience that’s like everything I can give you

I can’t send photos here?

Sorry forgot to tag you

Hm, currently on my phone, might be easier on a computer, lol

Isn't that just a CAPTCHA sort of thing? Never seen that before

Umm I don’t think it’s a captcha that’s just the page a block of code and then there’s a /api/seed where I can get the seed from but every time I’ve gotten a code it’s wrong so idk what I’m doing

Like I said, though to navigate on the phone, I just read something about a code that refreshes every minute, sounded like a mechanism against automation.
I could take another look from my computer tomorrow, perhaps someone else has some insight in the meantime.

I think sharing pictures is tied to a level on this server btw, I admit, that makes troubleshooting even more difficult

Can share images in chat2 at level 10

Ohhh okay ohhh it doesn’t show the whole chunk of code written on the page?

I was a page prior to that, the listing. No offense, I don't like following stranger's links directly and prefer to find my way there through Google 😉
Didn't check thoroughly

Isn't that the subscription one?

Nah it unlocks at 10

Pretty sure

Ah, for me it showed that I have to subscribe or something, lol

Ahhh yes fair enough was trying to be less vague all goods

Oh you're good, thanks for the details. Sure we can figure it out

Lol, just took a screenshot and then remembered that I can't share pictures here either 🤣

Something about an OwlSec Server subscription
Might be different with nitro?

@lilac lake
Is there a reason you are spamming every chat with this link?

I just wish if anyone will be needing to upgrade to any MacBook Pro

But no big deal just wanted to stay in a system

The link got no harm

Just don't spam all the chats with it. If you want to talk about it, then #💬・old-gen-chat

Ok

i am new to the field wanted a career change from HVAC i bought the security 701 book to study with the practice question book but its still not clicking is there something else i could study as well to help me get a better understanding

Is there anything related with algorithm. Which one i can learn and use it for my working purpose?

Have you checked out the online course for Sec+ 701 by Professer Messer on Youtube? He does a pretty good job of breaking things down and making it easier to understand concepts

#👥・new-member-guide

I don't get ur question

Yoyo wassup

Any way to get the home adress with an ip adress?

? I can't help u with that

there are websites for that, but remember that things like blackmail even online are illegal

I’ve been looking for reliable websites that’s provides accurate informations actually, couldn’t find any

That's unethical for us to tell you I hope u understand

Can't

It's not possible at all?😭😭

I have already responded to you in another channel, please stop spamming this

It's unethical for us to help u with that

This is just the second and you guys reported me as spam😔

It's cz we can't help u with that req

Hello

tf you are talking about

the guy was talking about finding home-addresses from ip...

And your answer was BS

You cant find any home address from an IP, not even remotely

I was able to

You think this is up for debate? No wonder you flag an OpenAI guild tag

I mean you can check it yourself, I have nothing to prove to you

Its not something I am remotely unsure about. It can't be done. Behind the providers NAT on mobile, or the address allocation on IPV4 and IPV6 only reaching towards the last known DSLAM or cell tower, and rotating IP allocation.. this is technically not possible.
I am just point this out, cause all the time we get kids and young adults who belief this fairy tale and ask how to do that, and usually people with more actual experience are there to set the record straight. Just making sure now that your nonsense is not left uncommented

I'm sorry, but I was able to get a pretty precise location on one of my friends using their IP.

"a pretty precise location"? You were talking home addresses earlier

if you check up my IP online, it shows something about 150 miles away.. is that "pretty precise location" in your eyes?

You tried to sound like you have an answer, but the reality is you are very unclear about the reality, how networking works, how the infrastructure functions.. so it's okay to just now reply to a question, if you do not know it

@raw vortex Please don't ask for pirated media

#📜・rules We are not helping with illegal stuff

so i will reframe my question, any place to learn free other then yt ;-;

#💕・free-resources

some dude in dms actually gave me idk now if its real or fake

We find out in a short while, when you show up again complaining that you were scammed by someone

i aint downloading off a random website 😭

i jus needed courses to get started in the cyberworld so yeah

#👥・new-member-guide

If its in DMs, its usually fake, because if they put it here in the open, they would get called out on it.

yea the wbsite looks sketchy

its smth downloadlynet and the domain

Hello @everyone

Newbie here😁

you tried to ping ~100.000 people to tell them you are new.. in the help-channel?

What's wrong with that?

hello guys

Well A it's not allowed only admins and owner can do that
B it didn't work cz normal user don't have those perms C becz it's annoying when ppl ping u

Hello

i wanted to ask that

can we retrieve msgs

from an insta ID

?

or whatsapp?

Ur msgs?

no

No u can't

oh

we can't also hack them right?

Nope

Right

oh thanks for help

No prob

btw i have an Instagram ID but i forgot it's email and my phone number is changed i tried to reclaim it but it is not working

i forgot the password

and my mobile number is changed

so i can't login

can you help with that?

For one don't be sending ur email in a place brimming with hackers try and think before u act

Second u should contact meta

For that

i did

sorry for that

Did u setup an otp

they said you need the mobile number or you pics of the post i have done

but i didn't post anything

i tried but the mobile number is changed

What does that mean

i don't have the old one

It's been hacked?

no no

Or did u change it and lose it

yes

i changed my mobile number

U have access to ur mail that you put on it?

no

Then there's nothing we can do

damn

no problem

Sorry man

btw thanks bro

No prob

no problem 🙂

👍🏻🙂

So an insta ID.. but not registered to any email address of yours.. nor to any phone number of yours.. and it has a password you don't know...

it's hacked you mean

#👥・help-me message I was just summarizing this gem

No

Guys I already answered what r we doing

idek if i can ask in this chanel but can anyone help me get into like hacking ik python and c++ prett good but i just cant like put shit together to make like malware or anything

#👥・new-member-guide

thank youuu

Ur welcome

Need help old account got cracked PLEASE

sudo apt install firefox here

did that help you

Ok whats the problem

Its a personal thing where i dont what one one to have acces

I dont know anything im new

Contact the support for whatever service your account was at

I dont have acces my 16 got stolen old accounts on a different number which i dont remember

Snapchat my personal life pictures of family crédito cards

"Contact the support" for "Whatever service your account was at"

If its not on your device, you dont have the credentials and your dont have the number, then let the service explain to you that there is nothing they can do for you

How did they have acces to my iPhone 16  did y respond

Interesting question, but none of us can shed light on it, so pointless to ponder

I live in a different country now

It happens

Moving to north korea, forgetting the us phone number.. happens all the time

They been using my Facebook vea use they change profile pics

The important part is, though - contact "the support", not "us"

We can't help u with that

Thank you

I'm afraid

Dude what friggin situation have you gotten yourself into????

Im sorry I think you are dealing with Aizen what kind of high level theiving is this

Wdym you live in a different country now?

Stolen on a trip?

Contact snapchat support and give proof that youre the original owner

is VulnHub good for Learning Pentesting?

is it web related or just Os related?

Hi..I need someone to help me create a Bot for hacking Bitcoin phrase

Ok

Not for free thou

How much?

Yeah... no one is gonna really help you on that bro. #📜・rules ..

Why’s that ?

be careful.. You have a Very Bad Ofsec.. You can Easily Get Scam..

Alright thanks

But I still need help please

And you can easily get helped anyways sent you Dm

why do you need to hack pitcoin Phrase??

Yeah.. That Bit$h trying to scam @lost vapor

https://tenor.com/view/mods-discord-mod-moderator-moderation-clash-of-clans-gif-24080525

Yo a who🛸re u know thst

read #📜・rules

I need to retrieve my lost bitcoin phrase

you need to show proof that you actual own that bitcoin wallet and we are not hacker for hire.. this is a place to learn about pentesting.... #👥・new-member-guide ...

Alright thanks..please can you teach me pentesting with my kali

sure.. what you need help with??

if you are new i would recommend tryhackme or hackthebox academy..

Can you teach please, so that I can Dm you

don't Dm me you can ask help here...

You download the vulnerable machines, and run them locally. It's not as curated as other services though. On the other hand - free

cool thanks.. 🫡 i'll trying running one on vm..

Make sure to follow their lab setup, those machines should not see the network

@slow edge

i would recommend https://tryhackme.com.. if you are a beginner.. and learn Linux fundamental first..

https://tenor.com/view/wrench-watch-dogs2-gunnin-gif-13336626

@golden vault do not ask for such help here, please read #📜・rules and do not accept DMs for such help, they are scammers

Thank you I am reading the rules now

Do not do DM solicitation, I know what you are trying to do here. Stop scamming people. Please read #📜・rules last warning

Ok it’s cool just trying to help nothing else

https://tenor.com/view/mad-angry-upset-throw-chair-gif-15422261

Ok I definitely did but I’m still getting notifications that these idiots are trying to charge my card. I want to absolutely catch them

unless you are in law enforcement, you should very much not be catching them

Hello, I'm a complete beginner and a new member of this discord.
I came here to ask for help in recovering my very first gmail account.

learn brute forcing.. I have never tried it outside HTB and THM box so idk if it will work or not...

first learn burpsuite first

Idk what you mean tho sorry. Imma try those tomorrow

https://tryhackme.com/module/learn-burp-suite

Idk why but it took me 4 years to think of trying this

read #👥・new-member-guide it will guide you if you are complete beginner

what kind of crappy advice is this?

you don't just casually hack google, that's illegal

it sleeping time here soo that the best i got

yeah, don't be advising to do illegal stuff even if you're about to pass out

it not illegal to learn...

well, if someone asks to access "their" old gmail account, the answer is "no", and not "learn bruteforcing"...that leaves very little to the imagination

enter gmail into the search function on this server, this questions comes up all the time

https://tenor.com/view/midnightgif300-gif-1342012341207187635

https://tenor.com/view/sleep-time-gif-2822468507363798988

lol, good night @keen mason

Night buddy...

not gonna happen

and careful with the DMs you get, cause chances are that people are trying to scam you

ah ok, I see now that this is like a mini challenge to solve

// hand rolling an MD5 implementation seems like a good idea, but I can't get it working...
is it something obvious like just the MD5 hash of that seed or something? not gonna be able to spend too much time on this atm, though I do like puzzles like that. not sure if I missed anyone else here giving it a whirl

enter gmail into the search function on this server, this questions comes up all the time

The charge won't go through once the card is locked. Your best bet if you want some type of justice is to contact law enforcement. The bank can tell you where the charge is coming from, give this info to the law and report it. Get a new card.

at this point just cancel card get new one

Hi everyone

Hello

Can someone help me find some information for honda motorcycles

Picture of Honda motorcycle??... You can Google or duckduckgo it..

Im a motorcycle mechanic and i just want to explore many things i want to see the wiring diagrams

Oh....... Google (honda motorcycles Wiring Diagram)

There are YouTube videos too...

hey guys so i was studying and stumbled upon a famous tool that does a dhcp starvation attack , and i stumbled upon a solution to it in this video https://www.youtube.com/watch?v=JB-0gIE-JuM

my question is , is this solution still relevant?

cuz

i have

no idea

Iwonder if i downloaded malware in virtual machine my main pc would affect with malware or the malware would delete as soon idelete the virtual machine?

Your main PC could be affected if:
-You enabled shared folders or drag-and-drop.
-You opened links or files from the VM on your host.
-The malware exploited a hypervisor vulnerability (extremely rare).
-You used “bridged” networking, and the malware attacked other devices on your network

otherwise u are good

deleteing the vm would have not effect on ur host

Ty

just don’t play with settings, use the defaults

and you’ll be safe

no worries!

And if this is some antivirus complaining about the kali VM, just ignore it

rephrasing my question i was asking if there are different solutions or is it okay to stick with this one just to know the attack and defense or am i exaggerating it, or should i read more or should i stop talking about this here

https://tenor.com/view/glorp-outer-space-gif-988837663270596515

I just now requested something , and now I see my messages deleted why though?

Most likely doesn't comply with #📜・rules

Also change ur username

What is the best website or method to study cve(s)

Just search the vuln class and term writeup in google search

So I went through -
#📜・certs-and-career for red team and I was surfing through each and every certificate and each and every of them are too costly, and being honest, affordability is an issue for me and I am not even getting free alternatives of those certifications. Now I wanted to know what should I do. I was thinking to get knowledge for each and every certifications, but what if I do where will I test my skills and if I want to get a job without the certification, how can I make people? The company believe that I do acquire the skills?

CWE
NVD

Thanks bro 👍

Thanks bro 👍 although I have tried studying from both of them but the interface is kind of complicated with bunch of urls any suggestion where and how to start if I'm studying on these sites

Short answer - you probably won't

It varies regionally, but in a nutshell - free certs are pretty much worthless when it comes to looking for employment

Ya, try to look for popular CVEs and search them on this sites

Ik the interface is sick but ya that is a good way to study them! You will get use to it. You just need any CVE code to begin with

And looking for red teaming positions from the start is probably just a terrible career plan

So should I start from blue teaming ?

What exactly is your current qualification

I have just completed my class 12 and I have zero knowledge about computer science and mathematics right now. I am in my first year of my college and I am pursuing bachelors in computer application.

Great bro I would suggest start learning networking and c programming

So you are looking at entry level jobs. Cybersecurity really isn't an entry level field

Maybe don't stress yourself about it then, get a few years of actual work experience in IT, see whether you feel you are ready, once you know a bit more what awaits you

I have started learning C programming language from this YouTube channel. Apna College.😭

If u r understanding then it's good otherwise move on to platforms like exercism, codeacademy

Actually, I really don’t know anything about cyber security. What made me love this space was from this series mr robot and I decided once I join college, I would start learning cyber security, but now once I am trying to understand, what should I do? It’s really getting very confusing.

Are these platform really good? If yes, then please tell me because I want to learn C language properly and I guess in my upcoming semester , there is also DSA with C language.

Yes these platforms are good as u will actually code instead of just watching a YouTube video

Just start on fundamental IT knowledge, get real life experience and forget about a job in cybersecurity for the time being. Chances are you are strongly underestimating the requirements right now anyway.

Thanks for helping me out. I will surely try this out.❤️

I am not underestimating the requirements. It’s just I know you need too much knowledge right now. I am 19 years old and I was thinking if I start early. It would be beneficial for me. You guys must have more experience than me. That’s the reason I am asking about, and I am very sorry if my questions irritate you, it’s just I get too tense
And academic wise I am not a bright student so I am trying to do better

anyone know how to find offsets within objects in v8 js engine in the sandbox?

It does not irritiate me, try not to attribute any malicious intent to what I am saying to you. Its just that people like you show up aaaaall the time.
Imagine that pentesting means you bet on your ability to know more about systems, infrastructure, networks, applications than the people that administrate them. And then imagine that security architects/SOC analysts know more about what pentesters are doing, and how to prevent them from doing it, than the attackers so... and place yourself somewhere in that construct.

You have no real world experience, you know, what is technically known as, "jack shit". Dont take it personally, its just what it is.

Keeping up to date with current techniques, threats, exploit strategies, is by itself practically a full time job. And that is if you specialize

It comes from the heart, when I say to you - "get real world IT experience first, before you even consider cybersecurity as a career option"

knock yourself out on course material.. let some epmployers pay for certifications.. you will rather soon realize you had no idea how big this even gets.. in the meantime you need a source of income, and that is what my recommendation is.. get a job in IT.. any job.. help desk, admin, programmer, anything.. to get a base foundation to actually build upon

So correct me, if I am wrong, what you’re trying to say that I complete my college degree try to learn some job, and while I am doing my job, then I should pursue in this path of cyber security?

My personal suggestion would be to learn for your IT job, and forget about cybersecurity for the time being.. but I'm not your real mom, you can do as you like.. most people that have 10+ years of experience in IT tell me straight away that they have looked at pentesting, and say they are not ready for it.

The field attracts a lot of people, but few actually have this drive to dive ridiculously deep into documentation, RFCs, read up on reports, and dismantle the stuff because they have this intrinsical motivation to understand how stuff even works.. those people find cyber security a fulfilling field.. the rest quickly loses interest, when they realize how, on the surface, "boring" it can be, how frustrating, and that what they see in movies and series is essentially just fiction

But, again, you can do whatever you want

some opportunities may show up, they may not. Maybe you find a job where they want you to specialize, maybe its a job where they frown upon certs that make it more likely for you to look for another employer..

At what age did you start learning about cyber security? Did you start learning about it before college/during college or after you landed a it job

My vita is not something that can work as a blueprint for people today

I started with DOS and Novell, BNC-networks and 386 cpus

i started a 200k+/yr cyber job straight out of college
it really depends on what uni you go to and what area in cyber and what you are doing to learn outside the classroom

Thats probably not an option anymore today, but YMMV

I know very, very few people who had a straight career path into cyber security

@grave delta
what Eris said.
Cybersec is just a branch of IT. People are trying to learn "how to attack Active Directory", without first understanding how to use an Active Directory, or Networking or whatever. It puts you at a disadvantage to learn that way.

i started it last year
its definitely an option in usa

I'm having an issue keeping VBS turned off on win 11, I've already disabled core functions, i've not only set reg key values to zero but i even deleted a few require to keep vbs running. I run the vbs bcdedit vms launch type off command and even the vbs command as well AND ITS STILL RUNNING WHY??? I dont even see device guard in local group editor that file is missing entirely SOMEONE HELP

something to note too. I came across a powershell command that disables vbs but only after a fresh restart and only on that restart.

also side note I LOVE CASHYOS i didnt know they had a discord.

Seems like a very obscure problem

yeah im failing to understand how i've virtually shot the process 30 times in the chest and its still up and walking around

Gimme a min

They are really nice to beginners. They just never talk about advanced networking, so I tend to be here more.

slmgr.vbs is crying

HKLM\Software\Microsoft\Windows Script Host\Settings DWORD(32): Enable Value of 0 is disabled, 1 is enabled.
I assume you tried this entry?

I'm not aware of such problems so see if this helps
https://x.com/i/grok/share/Ak3i6bTyWjcnuY4enaBaM6hUg

no i will try this now give me one minuet

would potentially need a reboot

only reg keys present in this file are
active debug
displaylogo
silentterminate
usewinsafer

So they are saying to add it like this (with DWORD(32) )

ohhh ok I added the dword reg value preset to zero all i need to do is restart and check if it worked?

You can check if it worked right away, but if it didn't, then yeah, do a restart then check

I will never ever remember which registry keys apply live

vbs is still running

Try "Enabled" instead. Might have been a typo from the reddit

damn i wish i could a freaking screenshot

vbs is still running gonna do ANOTHER reset give me a sec

nope still running

I just ran the same commands and im getting the same cscript error

but vbs is still walking around my system cocky to still be alive

Hey I firgurered out thank you man

nice, congrats!

I need vbs off for nested virtualization, I know you have to turn it off sometimes to avoid conflicts since they both rely on hardware virtualization but what if i just left the damn thing on? Cause this feels impossible LMAO

Hey i have a question i started using tryhackme to learn about cybersecurity before i start my coursera certifications( waiting on a sale lol) should i just pay for premium until coursera goes on sale im assuming by new years or black friday or should i just stick with the free stuff ?

free

The paid stuffs not worth it? i was going to just try for a month

no

What do you think it is better to learn from TryHackMe or HTB?

What VBS thing is still running? Is it an application that brings its own intepreter?

Understood im just eager to learn lol

Hey guys

learn what

Sorry forgot to mention but Cybersecurity

yeah like what in cyber

Tbh I don't have an idea but mainly Networking 😄

I'm not sure I checking VBS status through sysinfo and it still says its running but when i utilize the powershell script i found on github it it will display disabled or "not running" under the vbs tab in sysinfo but like i said it only works for that one restart

https://teachyourselfcs.com/#networking

Also what if I wanna do Ethical Hacking? 👀

you wanna do net working fiddle around with cisco packet tracer i like it alot

ethical hacking of what?

Ouu, interesting 👀

Could you please elaborate?

cisco packet tracer is like working in a data center setting up server racks and what not but its all virtual and things like hubs routers and switches have a physical tab so you can get a good look at the hardware and how it functions through how it looks cause you can understand something alot easier when you can visualize the thing you are working with

Which certification or cert path would you all recommend

what are you trying to hack: websites, mobile apps, iot, phones, servers, just local privilege escalation/individual programs, entire networks, industrial controllers,
they are pretty different

Yes, ik that and I have tried using it too before, I used to watch NetworkChuck for that.

It kinda looks a bit confusing, ik it won't be much confusing later on but yeah

for what

What if I say almost ALL 😈 or mainly website, desktop software & applications, servers and networks

id ask for what but the market is so competitve that people will have certs that dont even focus on they specific job they are applying for which makes it even more competitive.

I’m sure what arena I should go into security? Or Devops or whatever. I want to get into tech

Oh wow

im assuming you'll spend a decent amount of time on things not hacking
each one takes like your whole life

that's for you to decide
how would i know what you want to do in life???

Yeah I understand that but I will mainly go into servers and networks, wanna have my own server hosting service one day

people saying market is so competitive are usually entry level(little or no experience) and have no skills
like most areas its saturated when you're a beginner bc so is everyone else applying

i guess you want to do pentesting?
are you more interested in using existing vulns or finding new ones

I have zero industry experience so i'll say its damn competitive. all my experience is youtube videos and vuln hub hacking, college, and some things i've done on my own like my own home network and the like

Both and while I am interested in HACKING a network, I am also interested in building and managing servers AND networks

hang in there that's the hardest part
but once you have some experience it's much easier

do you want to do pentesting?
are you more interested in using existing vulns or finding new ones?

its hard man employers dont care about all the things I've done on my own self taught AND college instruction they just want industry experience and comptia certs bro its really hard

1. I am not sure what is pentesting
2. Both OR Finding new ones 😋

👀

THERES A GAME?!?!?!

WHAT

not yet, but we can talk about it more in #💬・old-gen-chat

Let me download it RIGHT NOW

.<

YEAH YEAH anyway please help bro KILL VBS FOR ME

are you still a student? i'd recommend doing internships
or join a top ctf team or do bug bounty/report 0days

things on your own time are unlikely to be relevant to the job and most people probably have already done what you have

it sounds like the registry stops it from working, so i'll look into why it won't show up or change in sysinfo

I could always call and stream my screen so you know what i have done already

just play ctfs https://ctfsites.github.io/

how do i compete against other people with miles of more knowledge then me on bug bountys man

Alright but what will help me with server building? 🤔

anything on google search
idk why you'd want to build a server

I mentioned my aim above, it's not my ultimate goal but that's something I am interested in

Cisco Packet Tracer would be the tool to use to get started with Network building.
Servers, it depends on if you mean physical, or just running server software on a managed OS

Seems suspicious

then don't follow the link?

If its suspicious, then don't post it here please 🙂

online crypto casino, yeah, does not sound legit

Sorry I wanted to see if anyone could work their magic and check its legitness

If someone DM'd it to you from this server, then please open a #📩┃ticket about it

why'd i get timed out?

Its not legit. Any online casino is not legit.

personally I like to google the domain (not follow any links directly)

Bot thought you were spamming the server.

is it a bad thing to install node in my Kali VM on the root, or is it okay?

effort and time
find a type of vuln then look for it in software
also there's plenty of areas that aren't looked at by anyone yet so focus on those

how? i didn't spam

¯_(ツ)_/¯

It deleted my GIF and told me to stop spamming earlier

Bot is the ultimate power

Hey thanks I think I was just being an idiot

it doesn't matter

out of curiosity, what was it in the end? maybe I'm an idiot, too 😉

ill keep doing vuln hub vms and getting access to those and I'll try a couple ctfs never done one of those before and I'll do a bug bounty or ATTEMPT one when i feel ready. Thank you

Can i just keep vbs running? mind you i wanted it off for nested virutalization but if its not gonna conflict with proxmox and the like i'll just leave it alone this is frustrating LMAO

Is taking the path of security engingeer into pentesting/red teaming a common thing?

I have never manually managed it, and have not had any issues with nested virtualization going from Qemu/KVM -> Proxmox VM -> Hyper-v VM

aight, tyty

not even necessarily bug bounty programs but even just looking at popular software companies make

ahhh gotcha so my college instructor is making me do something that's not needed dope LMAO

I mean, if hes getting you to use proxmox, then im already impressed

seeing people strugle with virtualbox makes me wince

security engineer can be anything its a vague PR term
source i am one and interviewed for many completely separate jobs all with the name "security engineer"

wait why would using proxmox impress you? I've already built the vm for it and everything doesnt seem to complicated so far..?

What would be best to focus on for that role or do u need a little bit of everything ?

not always

sometimes we want you to stand out from the others

make an original project

get creative

certs too ofc

ive seen it used for software engineer that automates incident detection and response, IAM, PKI/secrets management but also for offensive security or malware analysts or compliance(yuck)
all of those are different jobs so idk what you mean

Because people i know irl who go for cybersec courses end up buying an overheating 16GB of RAM gaming laptop, then get told to use Virtualbox, and aren't told the difference between the desktop version of ubuntu, and the minimal/server version. So helping them, its just waiting for their VM to do anything >.>

for security its easy to think of one just find an 0day since by definition its original
or add a feature to some open source project companies use

I am using LFS to create a linux distro for my schools sec program

also you’re putting a lot at risk if you have no understanding of the field yet go to secure many assets

see that’s cool! You could list it

add a special touch to it

Lol i was just wondering what jobs it mainly consists of but like u said its just a pr term but im looking into pentesting red teaming i do want a little background info on soc aswell

oo red teaming super fun

Lol i just need to study and get these certs i always wanted to be a hacker lol

https://tenor.com/view/dahlia-frosting-silly-cupcake-cupcake-frosting-gif-11885464312866396494

I work as a red team operator

@edgy crow for resume projects generally if the answer to these 2 isn't yes then it's not going to help very much:

1. Does the project impact companies?
2. Is no one else applying probably doing the same project?

IG i'll just go work as a data center tech or something to get industry experience LIKE idk LMAO

i'd recommend software engineer or SRE over data center or sysadmin

the amount of people that tell me landing in cyber sec right out of college is nay impossible and i dont even want like red teaming or something out the gate ill take SOC analyst or sys admin something LOL

are you in usa? if you know assembly i know a few places without many applicants that offer paid internships with no experience @edgy crow

It's ez

I am yes but i live in the south

also most people apply to the same 1k jobs
there's tons that most won't find

Just have a couple projects and know how they work

if you like assembly there are tons of government contractors in virginia and miami

well like what? I mentioned ealier I do vuln hub hacking on isolated networks on vmware and im doing LFS to make a linux distro but other then that what else can i do?

For soc?

You need to be able to work on siems

Triage threats hunting

Do projects that show case that

why would anyone want to soc 😭

What kinda argument is that

dude i just want industry experience I'd like to go to blue teamming in the future i'll take anything and who knows maybe i'll like it

nothing don't mind me i just hate it and would never do it

Okay

I think the main problem was the code at the bottom bc standard md5 hash is abcd abcddcd

i have a list of offensive security companies dying to find people that don't require prior experience

I can’t even remember what I did I messed around with it so much and then it just popped up

🤨

doubt

i can send it i even have recruiter emails
i had to turn down a lot of cool places

Send it

BEGGING

I'm employed

I just wanna see

must be nice

It aint

But yeah getting paid

i'd love to work in cyber anywhere really just need a bone one bone thrown at me

If ur in to defensive go to letsdefend

ooooo thank you!

Ok.

i just dmed places with paid internships and doable interview

offensive security only

I'll take anything but i'm def interested in defensive sec

just need experience first thats all i need rn

idk any defensive
i can help with resumes and fnding internships/entry level

hey do i need to pay for anything to go through this entire soc analyst course on lets defend?

It's like tryhackme

Subscription based

i really wanna do defense is the paid version worth anything?

When u start it

The first lessons are free

You can see if that's ur jam

ok i'll just run through everything i can do for free first then thank you i really appreciate it

It's all good

You can practice defense for free, just install securityonion or similar

Yeah but

It's more structured that way

And not having to set it up

im looking at this and is this just a practice tool? it seems like a sorta management tool so how can this help me practice?

That's what most siems look like

Not all

Its a full SIEM that uses open source tooling to scan network traffic, and logship from your systems.

As well as some alerting, and incident management

How can i use this tool to start projects that look good to hiring managers?

Well what I did was I did a cloud security project with the guide of cwx and put that on

Nope

If u look up soc labs

You'll find plenty

hey guys im learning on xss attack but i dont think i have time for now to learn deeeply javascript , so is it that i learn as i go through portswigger labs of xss and just try to find the answer on the internet by finding a similar problem and seeing another person solution? like how exactly should i finish xss labs and become confortable with it i dont feel learning java script is practical

yes

so i should just try to find how people solve my specific problem?

yes

thanks

yes

Wait, you want to get comfortable, but don't have time to learn? I don't understand

Lolz

i can learn , but i have a time limit for now i need at least to be able to solve one when i encounter it

i want to walk first

not go deepp in java

How do you want to understand something if you have no knowledge about it and how it works??

so is your advice to take a java course and learn?

yes

javascript is not java btw

Not java🤦, JavaScript

wait there is a difference

Yes

yes

Big difference

alright than maybe i will learn javascript in the future

So yeah, you should learn some basics before getting into XSS

2 completely different languages

I hate both equally though

yes

Xss

Hate typing on my phone... Thx

xsxs

XYZ

is that perfectionism

Attention to detail, whatever you want to call it

Details matter sometimes

yea never knew java and javascript are different

Focusing on server side vulnerability is cooler than client side

Then you have a lot to learn before you will think html is python

its just called javascript bc investors were throwing money at java at the time

Java is still being used up till now

it was supposedly to be a scheme dialect but the creator wanted to copy java

so its a weird mix only taking the objects idea and dot syntax

so i should learn js basics and that would be enough for me to continue my xss? or is there specifics

yes

i love how this guy always knows the answer but asks anyway

wdym

the answer is always yes

First of all, learn about JavaScript, play with it, build stuffs with, know it's syntax very well, then learn about xss, how can developers make a mistake of letting xss present in their website, how can you spot it and what learn how to craft your own xss payloads that could bypass wafs, and remember we don't only have reflected xss, we have stored xss, blind xss and dom xss, you have to know how to find this xss vulnerabilities on your target

One can use xss to steal session tokens too

There's a lot you need to calm down and learn if you want to be good

who said i'm not good

Not you

I'm talking to jalax

alright than , if i put most my day into study i can be xss ready in 30 days? and you think yt is enough to start learning js?

yes

the answer is always YES

Lolz, I don't know, but to me, 6 months is ok

thats motivating

wow

yes

there are many kinds of xss
the easier ones are reflected and stored xss
a much more harder form would be dom xss, which takes place in the dom tree of a website usually

i'm trying to break javascript

let's not forget to mention nowadays, CSP plays a major role in this vuln
needs to be bypassed

That's why one needs to be creative with their approach of attack

so how many years do i need to understand what you guys are talking about

It all depends on you and not us

If you're serious, you will make the year or month productive, but if you're not, you will make the years longer and the months longer

never ask that it's a lifelong journey

plus we don't know your future

too philosophical for pentesting but thanks

😂😂😂

your attitude shouldn't be "what's the least amount of time i can take to do this"

im curious can i know how much experience do you have zoku and duereturn

i work at :redacted: doing cybersecurity
for almost 2 years

maybe i just love deadlines and putting clear targets

you'll hate cyber then

does xss labs like the ones on portswigger feels easy for you? not the extreme just normal ones

yep

I'm always on 4chan and a private channel on an irc platform.... that's all I know about myself, the rest are private

How can i hack My girl friend password on her Fb

lol

mods ban @oak olive

Lolz ask mark

Am New i need help i wanna Be Like you guys

Like who?

Mark please help me

we don't do that here #📜・rules

Ok Thanks

Oops

godspeed to that "girlfriend"

yesh yikes

How

I hope that this person can stay far away from you

if you're trying to hack your gf's accounts then you're a pos and she should dump you

She already i just wanna know who She Talk to

None of your business

tough shit, not your business

Don't ask this here.
#📜・rules

Damn you are fast 😆

Am sorry

Ok

Use that energy to stack some cash up

Lol

Good night everyone

@rocky drift
Please no talking about religion here. We must respect everyone.

eempathetic server

what if respecting others is against my religion

Then don't talk about it here.

@remote creek @dense mortar
Not here guys.

Lowk tryna show my friend how to doxx using a IP grabber hidden in a image but ion got have my PC or laptop nm

So my message was spiritually just deleted, this is not normal

there's no issue with sharing an IP

??

So what's the point of telling this story with no happy ending??

this will explain it for you https://www.youtube.com/watch?v=MS7WRuzNYDc

Im looking for help with EdiZon on switch. Am I in the right place?

Whoever can answer this pls lmk.

I am unsure of what route regarding cybersecurity I wish to go down.

How do I determine if I like red or blue teaming better? Is there a certain certification I can do to determine this? Ive heard that the CJCA cert will help me with finding this out.

Lmk your thoughts!!
I want confirmation before I dive into it

hey 🙂, how much memory you guys recommend for a Kali VM?

Check out these useful channels:
#👥・new-member-guide
#💕・free-resources

Programming:

• Scripting: Python, Ruby, Go
• Web exploitation: JavaScript, PHP, ASPX, SQL
• Binary Exploitation: C, C++, Assembly, Rust
  Learn any or all above langs as per requirement

Networking: netacad is good platform
OSes: Windows (especially powershell), Linux (especially bash)
After covering fundamentals: Tryhackme, Hackthebox, similar platforms for hands on
Most important: Mindset
Ebooks to read for cybersecurity:

Cybersecurity centric books:

• https://security-books.notion.site/

about red team route and blue team route, I would suggest to do both initially to know about it
And about certs we have #📜・certs-and-career and #💬・certs to help with that

Being a red teamer is the best step first, you can only defend something if you once learned how to attack it in different ways

To be honest with you, those certs all they do is take money and leave you with no real life experiences sometimes they behave like YouTube

The best way is to start with yourself or find someone that's ahead of you in the field with real life experiences

What certifications do you personally have that can land me a job in the future?

First of all how are your skills or experience??