#👥・help-me

thats exactly what Im trying to do..

Do you play any games that have a self-host gameserver element?

yeah, someone maintain bomberclone server software already!

THIS, is the problem, and its not hard hardware one, look, the capslock is blinking and the screen is black, i switched to initrams, then when i tried to boot in i got this: efi stub: loaded initrd from linux_efi_initrd_media_guid device path
efi stub: measured initrd data into pcr 9
SO what happened here? Gentoo musl/hardened base system installed
Custom compiled Gentoo kernel (6.12.58)
Kernel definitely running (checked with file and hash)
EFI partition working properly
GRUB pointing correctly to kernel and initramfs
Initramfs exists and loads
PREEMPT_DYNAMIC already disabled
NVMe, ext4, block layer, devtmpfs all working properly --- whats the problem? i tried dracut before, No further kernel messages appear
Dracut does not start
Init / shell / panic does not appear

This means that the kernel:
does not reach the "late init" phase
does not reach full console initialization
does not reach root mount

🙂

bro, a cybersecurity guy needs to be specialist in every field, in programming, in linux etc, \ im a pentester too

Hi good morning house I am new here and willingly to start my cybersecurity/ehtical hacking journey please I need ma’am

im a cse student... I ve been focusing on only academics lately.. and when I try too do something more then that I just cant and feel stuck.. Ive interest in hacking or cyber security stuff... also have ml ai etc.. but again I tried to practice those and I lost focus againnn

register on tryhackme and start the basics of everything to learn the concept, then start HTB academy, do machines, focus on 80% practice, 20% theory, then do writeups, certs like bscp, tcm security, htb certs, and you can get a job

Blinking caps lock seems to happen on a kernel panic, so the rest of the behavior lines up then.
Have you tried posting your kernel params to the gentoo forums yet to see if anyone might recommend something different? Immediately from a search, I am seeing people have the issue with missing FB_EFI and FB_SIMPLE from their kernel

Its true, but this is a server for people learning, so most people here are still learning one or a couple fields.

Thanks very much for you response
What is HTB academy?

search up for hackthebox

There is links for it in #👥・new-member-guide

Thanks 👍

everyone can be a cybersec specialist or smth but to be a good one is like 1%, depends on how smart you are, how analytical, you can think outside the box or not, how introvert you are, depends on your personality too. this field is for nerds who rot in front of their computers all day long

I wish you success

nerds who rot in front of their computers all day long
I feel called out

😆

then its for you my friend

Yeah sounds interesting

Unfortunately, I am just a sysadmin for now

im installing gentoo in the last 2 days with 4 hours of sleep

im ticking but im still aware and cant stop

i need to finnish it

Honestly no one is a specialist in every field

its a problem

And truthfully.. the majority of tasks in the majority of situations can be done by on the job trained monkeys

Its a problem, all my hacker friends are great specialists who are interested in everything and know a lot.

Most importantly, they know what they don't know.

Their limits, and what they need to learn to get better.

And even they will tell you that they have holes in what they know about stuff, and know people that know more than them

If you are an intrinsically motivated person who wants to know how things work, great.. but even then you will stop at some point digging deeper

of course, I don't know why you say that 🙂

me? never

i will build my own kernel after i find this problem out and yes i will suck more than a month

Because you said one would need to be an expert in every field, and that is just not true. It perpetuates an image that people will not reach, and should not strife towards

super honestly the hacking part🙂🙂
Im just trying to do SMTHINGG.. as for today i started cs study I dont know yet wht i would do with it.. as just now I checked THM I saw I already had an account their and had checked what it was about.. maybe after tht I lost focus and forgot about it.. as for web development by self learning-no.. nothing at all.. but in this sem I have a course based on this.. same goes for languages.. I just know the basics of few.. c,c++, pythone, java, dart as they were paarts of different semesters..

Im not truely skilled in any of em

You play minecraft?

nope... I was thinking abt it though.. I saw some of the streams clips an all.. but never tried it

broo... nothingg... I dont even know wht are those yettt... I mean I do know abt some of them.. heard of em.. but not enough..

A hacker needs to really understand how computers, systems and networks work, and think onmachine level, which need deep knowledge. Linux knowledge for a hacker is not just knowing how to use Debian or Kali, or learning vulnerabilities and how the web works on PortSwigger. It goes more deeper than this. A real expert also know malware development, can write his own tools, knows what Nmap can not do, and can build those things from head without looking it up.

Find a game that you enjoy that has a server component like minecraft that you can host.
Then look into getting that working.
Then look into getting that working better.
Then look into using python + streamlit to make a little "admin tool" for the server.

Find something that you already enjoy, and use the things that you want to learn on the thing you enjoy. It will make it easier to learn it.

Gotta walk before you can run though

Using linux is a step towards understanding linux

Thanks for the clarification.. but even those that lack some of the fields indepth are doing fine. I suck at ICS/SCADA security, .. does that disqualify me? Or people who are in this field since DOS, BNC connected IPX networks.. and say "I don't care about docker"... do they disqualify?

You Do Not Need to be an expert at everything..

There's a reason sooner or later you'll have a network of people who are "more of an expert" in a field you are comfortable with, and who you can call upon. You are not going to be superman of infosec

Get amazingly good in a single field, the rest will follow

“But people stop at the point where they have a Linux system and try to use it; they’re not even interested in how it actually works, and they don’t even try installing or building a higher-level system. And they still want to be professionals like this. Pentesting roadmaps don’t teach this either, they only teach the surface level, like knowing the tools and libraries.”

I still say the majority of tasks in the majority of situations can be done by on the job trained monkeys

I know people working in IT who stopped before learning vLANs + Firewalls.

its about wanting more knowledge, if you stuck its not a problem, but i think you need to be still an expert

"an expert" is totally fine.
"An expert in everything" is just delusional

People call me with specific questions, cause I am the guy they think of with that problem. They don't ring me for everything 😉

in everything means in computer networking, operating systems, web, ad, malware dev, programming, its not that big bro

i can be a devops specialist now easily

but im still grinding to be a pentester

My rule of thumb.. if there are entire job classes that center around a specific field, then I am doing fine merely having working knowledge.. I'm not going to replace someone, who's entire career is based on a single specific field

Oh, I have an example

Sorry, but I can’t identify with your shallow way of thinking. I’ve wanted to be a pentester since I was 12 years old, and I can’t let go of the need to understand how things work. I take everything apart, I didn’t just start this path recently, and I was surrounded by real engineers who had already competed in European competitions back in 2019, they have incredible knowledge and not just knowing and understanding things on the surface, they told me the same, Continuous development, learn more and understand more, This field is not like learning a level and then quitting.

at the ccc conferences there is a regular "hacker jeopardy" quiz show.. and no one, not a single one, aced every category .. "Could" I have learned arm cpu instruction set commands at some point? Sure.. would that have been a regular requirement? Hell naw

How dare you not learn PowerPC

Maybe take a small step back, and look around you.. this is a discord server with a mix of people of different skillsets and levels of knowledge. We are in the #👥・help-me channel, where part of the help is encouraging and building self-esteem of new people.

So when you come here and say "You essentially need to be every superhero combined" then that is the opposite of helping people get and stay motivated. There may be people here who are great with hardware, or know a specific framework in- and out.. and all I wanted it to make clear that you are not speaking for everyone here with that artifically pumped up image of where people need to aim for

You can still get a job in cybersecurity at a SIEM company, that has next to no real expectations from you.. it might even give you time and stability to actually pursue interests in the meantime

To be good in this field isn't about being motivated. If you need soft words to motivate you to work in this field, then it's not for you. I don't know a single person in this field who needs motivation. They take apart systems themselves because they love it, and they never lose interest. Cybersecurity has become very popular, with many people wanting to work in it for money. However, this approach will only attract poor-quality professionals.

And we still need those poor-quality professionals for the majority of tasks, honestly

You can still get a job and work in this field without knowing about firewalls or wanting to be great. But, you know, you'll have an idea of what your worth will be.

yeah maybe, but you know, ai is developing

And we "also" need to motivate those people, cause if they can't get a regular job, and their living conditions deteriorate, we might just encounter them again at the other end of cybersecurity

I sent you a friend request you seems kind and well knowledgeable person

Hey guys, I have some questions.
I am under 18.
How much USD should I charge for:

Openly modifiying my foss bot to their liking.

Heavy customisation such as changing entire structures and stuff.

A basic tailwind css website for them to use to monitor bots (idk why they asked for this, its dumb.) 2-3 Maintenance checks

and around 20 to 40 hours of work.

seems like a full time job rather than a commission

i think you should ask for a respectful salary at this point

😭😭

its a one off thing

their maintainer fucked their last bot up

and its code is obfuscated

so I'll have to make a entirely new one

did you ask him how much he paid his last programmer?

though he can basically lie about it

probably some script kiddy

it has em dashes in the comments

bro probably asked ai to code it 🙏

how much should I ask? AI's telling me around 250 bucks and go to 200 if youre feeling generous

but im thinking its a lot 🤔

i think it's reasonable

i see...

if you know best practice and you're confident in your code structures it's good

yeah im confident, so 250 it is?

yes

and what should be my last offer?

like cant go below ts

like if they refuse?

yeah

like "thats too much"

Hey guys, I have a noob question. I was wondering how does gobuster work on websites that are on a cloud server. If I would search for the website through gobuster, will it show me the whole cloud directory list or the directories that are on the website only? My brother has a web i wanted to check on but I am scared to accidentally scan for the whole cloud server.

you can charge 200 if they do, but don't go below for your work

thanks!!

when you scan for web directories you essentially interact only with the cloud server that the website is hosted on
unless these directories point to different servers that are representing them though i doubt it's the case

you would only be interacting with the website's server

but do figure out to who'm it belongs to before you scan

Is it a VPS? or some "web hosting" thing

"web hosting" services usually put multiple websites on the same server

in which case it can be problematic if you scan them, even if you have permission directly from your brother

Remember to offer a service contract afterwards for a small monthly amount, volunatrily of course

Yeah that was my concern, he is using both VPS and webhosting

how do i make the contract legally binding from other country

I'm not a lawyer, just give them the choice to opt in.. so you stay on their radar for something like "up to 2 hrs per month of service"

anyone heared about valorant servers vulnerability ?

doing ddos attacks on it , causing packetlosses .

Hey, guys. Does anyone have experience with privilege escalation in Linux? I'm stuck. I've found a machine with “Sudo version 1.8.31,” but it's not vulnerable to CVE-2025-32463. 🧑‍🍳

thats not exactly how that works. What do you want to know?

i want to know how it works

You "found" it?

A DDoS attack spams packets at a host until that host is no longer able to respond.

yeah ik that , but what kind of attack is it then?

So you want us to tell you how to do it

If someone is DDoSing their servers, then its just someone "found a way to spam them with packets without getting blocked/tripping DDoS protection"

There isn't really much to understand, its very basic

not exactly , i just want to know how its working on a server like thier servers

There are no local or self-hosted servers, so you asking us "how it works to ddos a valorant server" has a very, very slim corridor of possible motivation

It may not even be effecting their server. It could be effecting their ISP.

he is using Vercel, so i guess it means I can not use the gobuster on this because it will touch more stuff then just that one specific website i want, am i right?

Vercel is just a framework, and has nothing to do with how it is being hosted.

Oh, nvm

im wrong

Maybe , but its affecting every one playing at the time , from saudi arabia , uae , jordan etc

doesn't matter, cause the infrastructure you are "attacking" would still be the one of the service provider

vercel is that auto-deployment thing that web devs use when they don't know how to use linux, right?

no idea

I'm doing an audit. I'm about to report the intrusion, but seeing how they manage the vhosts, I suspect it could be escalated.

you spent way too much time talking to chatbots, if you think "I am actually doing an audit" would fly here

oh sorry, thought you are the other new guy

still.. if that is a question you have to ask, I am doubtful about anyone tasking you with a vulnerability assessment

You are the intrusion.
You mean report the vulnerabilities?

I figured it might cause some confusion around here. It's not the first time I've worked with this particular client. I don't work with servers 🙃 , it's not my specialty, but in this case it came up. And I've tried all the usual things, I thought that maybe there were people with more experience who use other techniques that I'm not aware of, but out of sheer curiosity to see if I was on the right track. I'm not looking for the right way to exploit it, I don't care. The report is what it is.

I find it anecdotal that the community always reacts this way. I rarely use servers because people take it badly. “YOU SHOULD KNOW HOW TO DO THAT,” so why the hell is there a channel to talk about “help”? I always end up in channels where the questions are nonsense.

If you can read the CVE you posted, you know it's not affecting the sudo version you target

Oh, damn, wait. I just fell. I made a mistake thinking about how it works. I've already seen what happens with that particular fault. The "-r" thing.

thnx

“YOU SHOULD KNOW HOW TO DO THAT,” so why the hell is there a channel to talk about “help”?

Dont take this out of context - you should know this IF you are by definition a professional, e.g. someone who claims that this is part of a client engagement.

Unfortunately people come here with false claims, stuff they think works because it works with chatgpt, to get help doing nefarious stuff they shouldn't do and also don't understand

So... when we tell people "your story does not hold water, why don't you know this already if you claim to be a professional?" its different than pearl clutchingly asking why the channel is named "help me" if no one wants to help

nope

you were correct

not necessarily

it has serverless architecture

so fuzzing will stay the same

Hey so I am dual booted with Parrot Os and windows 11....since the last bios update I have been facing issues of parrot getting crashed after 10-15 minutes of usage....first the wifi card drops... internet gone...then goes the screen keyboard with caps lock light blinking continuously.. everything dead.. laptop is Asus tuf15..rtx 3050

Linux Kernel Panic?

asus tuf are well known for terrible linux support

If you want to invest time into troubleshooting, you are going to have to look at log files at the time of the crash

Firstly it was acpi problem... now it's something else in journalctl

how can i run .exe file in linux

I need help. I'm new and know nothing about hacking. Recently my Gmail has been getting flooded w spam emails. Can someone please help me?

What is the underlying situation here, like.. what is it you try to achieve?

Help with what? Spam is natural now

i need to run mal...

and test

That is what labs are for, like FlareVM for example

you dont "run them" in linux for that purpose

do you think anydesk is better

"better than what"?

than you will tell me

Its going to my primary folder and it's about 100 spam email at one time. From all over the world in other3 pplz names

I told you, exploding malware in a controlled environment is done in labs, usually VMs, FlareVM for example

i don't like VM even users

I am happy that you encountered the phenomenon of "spam" this late in your life, but it is nothing you can "fix" or "solve"

Doesn't really matter whether you like it, or not

report

matters me

I have been is this the only thing I can do?

Oh well, then dont use VMs .. or use them later, when you realize that this is how it works

That's the dumbest thing I read in a while. You use a sandbox / VM when you work with malwares.

As a general rule - computers dont care a lot about whether you like how they work

Yes, but also consider Email to be legacy. The only "fix" is paid email spam filters, which don't really always do the best job either.

Hey guys

hi

I have an account with all details but I've forgotten the key and I'm about to withdraw I'm unable to

How can I get pass this

according to the #📜・rules we cant help you with hacking, especially since we cant verify whether this is an unethical act or not.

It's my account

😩

In that case contact the support of whatever service provider that is

How bro

How should I know? You have not told us anything about "where" you have that account

go and ask them

wherever you have that account - they have a support section

the hell I will

You are missing the core message here

Go There

Oh NOOOO

That's a scam website

saw the trust score? 😉

Domain created 10 days ago tells me already enough

@echo patio
I had to delete the link, as it is a scam service.

Thanks for letting me know

Hey guys I have a question about a website that took 3.5k from me any one here know how to maybe override the system to get my money back
Thanks

We are not helping with this #📜・rules

Hey guys can someone help me find a dupe in a game and help me learn coding and deving and scripting?

im willing to pay if needed

Please pm if you are interrested

or willing to help

what do you mean by "dupe"

Duplicate I’m assuming

sick! When i finish with them, do i go forward with things like scripting, red/blue teaming, and vulnerabilities and exploits?

Is hackerai.co legit?

https://hackerai.co/

Whatever direction you like. It depends on whether you're trying to work in the field or just have fun with a new hobby

Wat up my man.
I don't have an answer for you or nothing.
Just saying hey.

https://tenor.com/view/predator-arnold-schwarzenegger-hand-shake-arms-gif-3468629

My brother

I watched this YouTube video geared towards pentesters at then end the guy recommended this ai saying you can ask it whatever even let’s say more so unethical questions with full detailed answers and I didn’t know if it was legit it logs out interactions or what yk

Dunno, but if you figure it out let me know

I got you man

damn sounds like a trap to me but I'm naturally pretty suspicious

I put the link lol if you want to see I’m reading through it rn

yeah i'll give it a look over

hey guys can someone explain to me what a threat model is

guys can someone help me find or make a dupe in a voxel game the more people the better

Pm me please

hey guys can someone teach me how to hack or like white hat?

#👥・new-member-guide

If you want something done well, do it yourself

Hey guys i need help with iphone. I dont remember Icloud password and when i want to restart password I don't get anything on mail. I want to log out but I cant because I need password does somebody can give me tips or is there any email to iPhone support?

thanks but it didnt help much

Contact apple support about it

It is helpful, you just have to invest the time and effort

okay

if you want add me, I'll teach you the ropes

okay

and maybe don't trust accounts that just joined the server

okay

On official site they want me to log in but I cant because of password. Its just loop where they send me code on mail that don't work

ah yes I will hack a random person I don't know

be real

Still apple support is where you should direct the problem at

Like that's unheard of ^.^

your dragging it cuh

also, no need to hack anyone, just scamming them

Either way.. I would be suspicious of new accounts that just joined the server and try to lure newbies away from the main chats

Please be careful of scammers who will try to promise information hidden in DMs or off platform.

Most knowledge or questions can be asked openly here instead. This ensures no "funny business" is happening.

literally sent 2 links of hack the box and tryhackme

yes he is not trying anything

they got sent to #👥・new-member-guide which already has THM/HTB links..

and then i told them to dm me back when they have done a few lessons for personal teaching rather then the slop on #👥・new-member-guide

On which subjects?

Something that the rest of us can't know about?

stop dragging it

listen.. to you as someone who just joined this warning may seem personal.. to people already on this server for a while this is just general advice, born from past experience

stop talking about this, this is a helpme channel for crying out loud

smh

When I joined, posts like "Who can help me contact someone from this server, I sent them money and now they are ghosting me" was a daily occurance

because there are bad people out here yes, i am a black hat too but i don't come into servers like this to cause trouble

black hat lol

Gosh so glad to hear that..
Seriously though, to me you are a random nameless account that just joined, and I warn people to let those lure them away from the main chat

Decide for yourself how much that bothers you, I dont really care

mhmhm

🤷

Sometime I really wonder, what do people expect when they wanna learn "hacking".

wdym

Their motivation

"Here is a link with resources"

2 minutes later "That didnt help"

but the link with resources can be daunting for newcomers

Sure if you start from absolute 0 without any fundamental.

anyways

chill

That's why Cyber Security is considered to be already a specialization that requires to have some knowledge about networking and programming

but they didnt want to learn cyber security they specifically said "hacking" or ethical hacking cant remember which

either way

I need some people to talk with
Ive made a software
I just need people to come share their opinions about my cyber software in the launch video of my software

Are we talking about the skillset required for a profession in the IT subfield of Cyber Security? Or running scripts?

kinda the same

different

Explain the difference.

Do you have a github to your software?

Yss

Im launching it

Ill upload it on GitHub
Rn its private repo

Ive demos and screenshots

let see please

okay here's what gemini said

Hacking vs Ethical Hacking: Check Key Differences and ...Hacking involves gaining unauthorized access to systems, often with malicious intent (black-hat), while ethical hacking (white-hat hacking) uses the same techniques but with explicit permission from the owner to find and fix security vulnerabilities, making it legal and beneficial for defense. The key difference lies in authorization and intent: hacking is criminal and harmful, whereas ethical hacking is authorized, legal, and aims to improve security.

If you want, you can post the github link in #👥・github-and-projects for discussion, as long as it doesn't have any unethical portions or parts that break ToS of other software.

explain the difference
"here's what ai said"

Its a cyber security software for network forensics 🫆

wrong i said here's what gemini said

I asked you to explain the difference, not the LLM.

So are you saying that you are attempting to help people with illegal/criminal/harmful activities?

he doesnt even know what hes argueing about

Do you want to talk on vc? I'll share inages and briefly explain the software

yes please do

lmk how it goes, and if we should talk to Sudo about it if you can please.

no i didn't say that, you are putting words in my mouth

Which vc.?

I think you need to lvl up a bit before you can join and talk in VC.

general

Ok

Literally from your post.

hacking is criminal and harmful, whereas ethical hacking is authorized, legal, and aims to improve security.

fr ?

i really want to see what hes working on

I think blue names can't join VC

I don't have permission to join general

Yea just need to talk for a bit before you get the role.

Think it's only 1 lvl

ok just interact in the chat for a while and you'll level up

Oh great

It's done ✅

Okay now you should be able to join

ok join

hacking is percieved as overall dangerous, as there are more black hat hackers then white hat hackers, therefore the generalization of hacking is often seen as bad

ok

thanks gemini, but maybe let the human go

We are going to stop talking about this now.
Please don't ask people to DM you for learning lessons.

i wasnt even talking to you

wait nevermind you made a spelling mistake carry on

.

jeevis the software is dope everyone needs to be on this

Code License?

he's showing a preview have not seen the full thing yet

If its a business promotion, then best if it can all be put into a ticket for Sudo/Cy to review.

alright i'll let him know

I am interested when the github shows up

Guys can someonehelp me find or make a dupe for free please pm if youre nice enough to help

dupe?

How was this thing

what

not always

uhh sure

Join vc general

they wanted an example

If I have no experience in coding and cybersecurity and want to get into the defensive side of cybersecurity how should I start. Right now I’m watching python full course for beginners by programming with Mosh

#👥・new-member-guide
Ideally, you want to start looking into Virtualization, networking + OS management. Maybe a helpdesk role as you grow that into more "defending"

Is there a channel on here that is best for resume critiquing/feedback? or is there none on here? I just edited my resume and looking for some feedback on it

Hello everyone! Sorry for sending this in here but I will make it short. If anyone knows a remote job opportunity please let me know as I am looking for options. I am a full stack developer transitioning into cybersecurity. Sorry for disturbing 💙 KTBFFH

@small perch @indigo sluice
This isn't really the best place for that.

you need https://discord.com/channels/990435451334688768/1070121989479596086 this chat if you can't communicate with someone irl

@sharp moss Do not ask for unethical stuff here.
#📜・rules

My bad

Okay thank you!

And there is always the compliance side of infosec, too

Thank you I will try my best to find a better way! Wish me luck

https://tenor.com/view/fixing-cuff-boss-hot-man-man-looking-good-man-in-suit-gif-14491385609047115364

"i am a black hat too"

this is not related to help-me

just thought it was funny the way you said that, dont read too much into it

ok kid

i must be the oldest kid i know

Hey guys I'm New here!

Hey guys ✌🏽

Can somebody help me? I am new and idk how this works

i found a guy who solved my dumb problem ,if you want to see it: https://forums.gentoo.org/viewtopic-p-8876527.html#8876527 -- check the 2 last reply -- it was stupid right?

Help you with what?

what do you mean about "this"

Reading this makes me really want to spin up gentoo

maybe ill do it this weekend

Object permanence strikes again

it’ll get ya every time, you’re not careful!

how long it take you to get it up and configured fully, usually?

not just gentoo, musl based with custom hardened kernel, gentoo with pentoo overlay + DWM

justlikeme

0 documentation on this stack on internet

Sorry i mean how this server works 😅😅

it's just a discord server like any other. Maybe start here #👥・new-member-guide

Thank you G 🙏🏽

I'm trying to put debian 13 on bare metal with an iso on a usb any tips?

what do you need help with? to create the bootable usb use rufus

Hi there! Just wanted to send out good vibes!

Thanks bro

is there a windows based tool or program to get names of people based off their user names from social media or gaming for testing purposes ?

i mean there isnt an executable that runs the databases to get someones real name from a username like monkeyd*ck700 but you can always try through https://osintframework.com

||hope you are using this ethically ||

yes i am using ethically

how does hvnc work? is it just creating a hidden desktop then doing typical rat behaviour for that desktop.

I’m struggling with python, can some one help me find a python, c, or c++ for dummies

Hvnc clones browser profiles for stealth operation in most cases. Google detects that a profile has been cloned and prompts you to "verify it's you" But other services like banks e.t.c work pretty much well .Some Hvncs offer full system wide control. The main issue here is getting a reliable hvnc module.

Yea that money is gone

Oh wow

star my repo if you like this friends

Why is this in Help me?

@karmic kindle Sorry bud but we avoid promotion so don't do it here, also if you want to show your github projects then we have #👥・github-and-projects and do not promote it, just let it be there! No need to tell people to star it. Thanks for understanding

Guys do u have any stegnography image questions from previous ctfs?
I kinda need them for practice purpose 🙂

i wanna hack into my own website. how would i do so. suhtting it down

Turn off your laptop
If it's on a server shut down the server

You might get scammed again
By someone who will promise you to get that money back

. that money is gone

u cannot get bitcoin back if already processed

Hi, can anyone help with comptia account?

help you like what?

can i dm?

No, I don't do DM

if its not something you can say out in the open, maybe this is the wrong server

nope its just about account info, should I add contact infos in my profile or its not important for exams?

I don't know, but if you plan to get a certification that actually names you, then it would be a good idea to actually include it in the profile. Else they might suspect that people are doing the exam on behalf of different people

ok thank you 🙂

hello everyone please does anyone has the link to the free hacking class on bigo live?

Looking for someone to help me make a dupe in a game

Hey guys, which browser do you prefer for everyday use?

Several, but Librewolf is the go to browser for me

You mean cheating in a game?
#📜・rules #6

multiple, best tool for that job

some things load better with chrome, but firefox gives you better access to block malicious scripts from running

oke

Okay thanks that was very helpful

I use brave because it has PWA, so i can make my own "chrome apps"

not that i think its particularly better for privacy or anything

Web is in such a trash state. PWA should be the default >.>

that defaults each "site/app" as its own session that can't talk to another app's session

but nope, instead we get more AI + ADs

Well, it is until its not.
Hitting a RAM wall now with Datacenters, means that all the apps that just "eat RAM for no reason" are going to be a problem now.

and since Windows is 1 big app that eats RAM for no reason....

The Small/medium business world is glued to windows >.<

i too use linux primarily

Disney decided to stay unix-like, and went linux with redhat stuff

freeIPA works great

its just not as "dumb-easy" as AD

but also doesn't have the same dumb issues AD has

has other issues, but not the same ones

it itself is the auth + certificate authority. Not the policies. Ansible/salt/puppet would be for policies.

Oh, and freeipa(or whatever the paid one is called) also does sudo management

which is huge

right, because you can hire some nerd from bestbuy geeksquad to run an AD.

But thats how you end up with half-broken stuff, and insecure settings anyways

or even "things set up properly, but are just bad tech", like Roaming Profiles, or Redirected Folders.

only the management. 99% of staff i come across can't stand Teams + Onedrive/sharepoint, and would rather go back to SMB shares and use any other chat program, even FB chat.

It is possible. But nobody wants to go through all the settings to figure out what they do except for a rare few of us.

so its either "default with some changes" or "grabs whatever that locked down policy is from that regulatory body"

Or , sometimes i see really jank things

oh snap, thats what it is called.
I started to implement a red forest for a company, before they had a pentest, and the security company said not to do those, just keep it all as 1

Yeah, it wasn't implemented yet, we were still planning the hardening model.

how important is wsus nowadays?

It feels like anything that microsoft hasn't provided a cloud version of, is just going to be falling away, and not really receiving much updates outside security.
You can mostly manage updates fully through powershell + registry, and its unlikely that pulling updates over HTTPS is going to have security issues(As long as you enforce the update location to be official servers). So I can't see them making an "Azure WSUS" or "Copilot WSUS" or whatever their naming is now.

But even like WDS feels outdated and barely kept alive.

In NA, there was a huge push to the cloud. Now there is a lot of "regret". Some got stuck.

Other's haven't felt the "regret" hard enough yet

There is no "pure 1 environment best for every case"

on-prem + cloud are just tools

private data on-prem

public data maybe in cloud

Secure entry and exit points to private data

The problem i see there with that, is after they are done paying 30-50$/user/month, they don't want to pay for server licenses or hardware

especially if running like 8VMs or something, and you decide to go Datacenter + 3 servers or something

and start getting into clustering

$20k licenses later, you get 0 support from microsoft if you can't figure it out

gee, what a good business

Btw, yes, i did stay on the phone with microsoft for 6 hours to be told i can go help myself with an issue I had with a cluster >.>

what are we all giving them money for?

to make bad stuff and not care?

https://tenor.com/view/fantasticmrfox-destruction-destroyer-angry-freakout-gif-3526670

motw was 10 years?

i thought we had that in 7

yeah, they recently had it pop up now, and actually used it more

but

end of the day

doesn't replace a package manager + secure repositories

which is what microsoft ended up doing anyways with the windows store

From my understanding (I don't do linux workstations yet, but its something im planning on learning), if a linux machine's folders that a user has write access to is mounted without execute, then the user would not be able to download a file and just run it in the first place.

avoiding the entire situation alltogether

i mean "users can't override it" if the FS is mounted noexec

or if they extract from a .zip, which would keep its flag

Did you have a question btw?

Feel free to ask away

We should take this to DMs so we stop bogging down the channel 🙂

Any other better alternatives for vs code ?

look for other ide's online

No suggestions here bru ?

i use visual studio 2022, idk other but yea visual studio is good

Thank you mate

You’re into cyber sec and malware stuff ?

yea im a beginner too , learning and exploring things

Great , I’m too

do you mind if we talk on DM?

Will that be a problem if I slide into your dms ?

🥂

oh no 😅 totally fine

Thank you

So I got a problem when I start burpsuite the gui doesn't load

https://tenor.com/view/java-dev-clown-programming-programm-gif-20280193

It’s why we can’t have nice things

I tried MITM attack the other day within my home network via bettercap but after enabling ARP spoofing, bettercap reports that it couldn't find the spoof targets although they were obviously active in the network. Does this have to do with my router or bettercap itself?
Thanks in advance!

Hi, i need an app to stop background running apps for my android device. I prefer F-Droid

@shadow fractal

@desert viper how old is this person maybe you find him on facebook

Whats up

Above me

Blackmail and asking about finding someone

I always feel bad for those people

well, that's not the case.

@desert viper we don’t help with that stuff here. Please review the #📜・rules # 3!

malware mentioned

i’m spammed in

with your router often

or wait, share more specifics

hard coded mac addresses or ignoring mac changes avoids mitm

it could be wrong networking set up if it’s a virtual machine

if you haven’t changed network settings in virtualbox / vmware it’s not gonna work

is their a way to install(dualboot) a linux distro without accesing the BIOS?

no

no, but virtual machines/WSL exist.

question is, why do you want to avoid bios

previous owner set a pasword on it, but he forgot it

so i cant acces it

so use any of the standard methods of removing a bios password. googling will take you miles

ah, i did google, not enough aparntly haha

the CMOS battery method doesnt work cus its not really accesible so...

nobody's stopping you from grabbing a screwdriver

yea i opend up my laptop but the motherboard is deeper down

it never is

literally unscrew more then

it’s not that hard

okay ill try

Has any1 got a a good app on android that can block apps etc

For my own personal use

Search on apps store something like "app blocker" or something more specific, I only use "No Scroll" for preventing my brain from melting for now

Ive searched for some they are either paid or just a bit weird to navigate

Hi how can I know something is a scam or no because I’m buying from a vendor and I pay for product and delivery and now he trying to make me pay again the same amount for custom to release my package that’s what they saying

Have you tried the mods of that particular apps?

Sharing email lists for services targeting any website or app. Inbox gets 100.0 ratio due to MX record validation.

#👥・help-me im starting out im cybersecurity and getting a new laptop which one should I get?

Thinkpad

This is what I’m getting: Lenovo Gen 13 ThinkPad X1 Carbon Aura Edition AI with Intel Ultra 7 268V Processor, 14" 2.8K 2880x1800 OLED Non-Touch 400 nits 120Hz Display,| 32GB RAM+2TB SSD|, FHD RGB/IR Cam, Wi-Fi 7, Win 11 Pro

On Amazon.

This a good thinkpad? @flat prawn

That isn’t bad bro

Yeah. It’s only $2k.

my laptop was 300 😂

What laptop you got?

Lenovo yoga lol

Is it good?

I mean it’s worked for me

If you don’t mind me asking what kind of work do you do? I’m still learning and a compete beginner here.

dm me

I have more questions.

bros, can I recover my fb if I forgot the email nd password?

just seems like you trying to log into someone’s account using their email and password ngl, but if you aren’t lying and you know your username and your phone number then boom

nah bro i dont have time for tht crap it's my own I'd but I know my name but there is nothing in tht account like email and phone no. I don't know how tht happened

my english is not good 🙃

you don’t know how it happened? Huh

bro i was 17 years old when it happened

why you trying to get it from way back when you confusing me man

and it's a 10 year old account

💀

how I can prove

I didn't get help from anywhere I give my id proof to someone for tht account

and it can be an reason for learning hacking

I have some cringe post on tht account nd want to see if my gf sent me any massage 🤣🤣🤣

It’s ten years ago how would your current gf send it a message

I don't have any current gf nd tht was the only account where I was to much active and at this time I don't have any ss media accounts

I know it's confusing

bro i can pay if you can help

bro

yes

I can't send any ss here

Don’t send me no request bro

sry

Give me a minute

oky

bro its you?

?

Won't receive that help here.Contact the relevant support platform and refer to our #📜・rules

Hi

mine was 100.... (t480)

with 32 gb ram, 1 tb nvme ssd

Hi

and yeah its fast... 4 sec boot on artix runit i3wm -- i can play ctfs fast

hi

Hello everyone

Hello

Wassup

Hey, how are you?

Wassup graves ngl sleepy bro

Ahh real shiii man

Need some help message me

Just ask

Umm... I am new to this... And I want to know where I can learn more about it? Resources? Methods? I use kali Linux. I have done the networking stuff and some basics of everything but don't know how to advance...

#👥・new-member-guide

So it would be helpful if any of you can just guide me a little

What can I do to get into my email got a new phone and I can't log into anything

Is the phone pre-owned by someone else?

Use your credentials that you used when creating the e-mail?

Its asking for a 2step code f to be sent but I dont have the same number

N yes bought the phone from someone

Well that's going to be a problem then

Better get your money back if the phone is already registered.

Or demand a factory reset at least

Else I guess the phone was stolen

Cause it was

The phone has been reset the phone is fine.

So your mail is asking you for a 2FA token you no longer have access to

Yes

Well either your mail service asked you to generate and save some recovery keys just for that case, or you are going to have to contact that email providers support about your problem and hope they can and want to reset it. But 2FA is meant to not be easy to circumvent

Yeah . Thanks yall just has a bunch of military documents pictures. School docs its crazy.

On my system , whenever I try to open something its opening in my task manager but it’s taking too much time to load on my actual screen and sometime it doesn’t load at all but stays in task manager… should I change OS ?

That is entirely your own decision

I'm not sure if this against this servers rules (im pretty sure its not after quickly brushing thru them) but my microsoft/Xbox account has had its data collected with the password and email changed. microsoft support is useless and will 100% of the time tell me to change my password. if anyone is willing or wanting to help please DM me and I can provide more information (The email its currently hooked to. original email. original password etc)
thanks

No one is going to hack into a microsoft account for you, and microsoft support is exactly where you should go and pester them

got it 👍

Is there any alternatives, I’ve tried few but none seems working

"not working" is not an error description, and from what you told us - we don't know what the problem is

Likely something you did, knowingly or unknowlingly, and I really don't want to go through the "I did not do anything" and "Oh yeah I forgot that" routine

The decision is yours

It all started from steam , I downloaded something from steam , ran it afterwards…. Im getting this issue

Something someone sent you via the steam messenger?

Thank you!!

Thank you!!

Hello everyone, I am new to security and I really want to become a hacker, please help me give me a guide, what should I do and where should I start

start here #👥・new-member-guide

Thank you

I am also studying software engineering, can you help me with that part so that I can become a good developer

Why ask me? There is a whole server that can reply to a well phrased question 😉

Sorry

Word of advice - make it easy for people to reply, tell them exactly what it is you are looking for

Am looking for developer of full stuck

Don't Tell Me 😄

At website development

Website development and security

Not quite sure what you are hoping here.. we don't know which continent or country or city you are in, and for sure no one here is going to be able to pinpoint it more exactly than apple already does

Probably going to end up in a radio-blocking wallet as soon as you ask around there

@wispy notch we don’t help with tracking phones here as we do not know your true intentions and if you are being honest. This is a cs/eh learning discord! Stay on topic please #📜・rules

I dont think they had any tbh

No

Nahh mate thanks , ill figure it somehow .. thank you

Question about reverse shell.

Is it possible to use the same port to more than one target connect to? And still control simultaneous targets

https://imgur.com/a/9rIE3if Hello, Windows won't let me connect to the desktop.

May I ask what the specific use case would be?

I was talking with a friend and he showed me a github repo with a code "RAM Cleaner", but with an revshells.com payload, the payload pointed to an server and one specific port.

Then I've though how the server manages many connections if more than 1 person execute that script

Cool, I thought of some project related to that

I need an advice from someone that has been through this case. I am about to finish highschool, currently eJPT certified and aiming for more certifications and to work in cybersecurity industry. I am practicing daily, working and building a portofolio. There is no separate college for cybersecurity here where i live only a CS and cybersecurity masters, 5 years in total. Should i still take a degree or as soon as i finish high school apply for an entry level job and start working? Will this affect me in the future? Affect advancing to higher positions? In these 5 years i can gain a lot of experience

Which country are we talking about?

Romania

i am planning to work in another country though, not here

Some countries put a ridiculous emphasize on a master degree, others don't care at all - is the country you plan to work in already determined?

yes

Germany most likely

best option

Employers in germany do not care about academic degrees at all

YMMV in the public sector

i believe that wasting 5 years in college that would teach me almost nothing would be a stupid decision but as you said, some countried emphasize on a master degree

i would rather work and gain experience than spend 5 years in college

You would be hard pressed to find a person in german cybersecurity with a master degree, it would be considered a total waste of time

Hey, do you guys know any good software that connects a Windows PC and a Kali machine to share the keyboard and mouse between the two devices? I tried Deskflow, but it’s very laggy.

understood, appreciate that

i am just a little bit concerned

a college won't teach what certifications do and just grinding on THM or hack the box

Having relevant certifictations or having personal connections would get you into the interview stage. There language skill and knowing what you are doing is the only relevant part

Well, depending on what job specifically you are looking for of course

Hello everyone, please help me, I want to become a web developer, where should I start?

i am more concerned of how people make the difference between someone with a degree and someone without

Most people don't go to university in germany, some sort of vocational career paths are the norm. They really don't care as much about academia as other parts of the world do. They are very practical.. you can do the job? Then you get the job.

that's what i am saying, practical knowledge is much better than having a degree.. most people that graduate don't even know what they do

especially CS graduates

so i passed my eJPT exam and i am aiming for PNPT, CRTP and OSCP. Is that a good path?

someone also suggested CPTS

Most of the times job listings ask for "OSCP or equivalent", which depending on who gets to read the application may include PNPT or eJPT. I've never seen CRPT or CPTS in a job listing

Prior job experience would go a long way though

does hands on practice like THM labs count?

really not

The eJPT would be way more relevant

i meant as in THM labs including certifications

Having worked the job before just shows that at least someone out there vouches for your expertise

indeed

THM/HTB have this .. taint.. that everyone and their dog and pony has them

and usually people dont care a lot about whether it are the paid for certs of those platforms

btw I dont mean to say that you would have to have worked as a pentester before.. but general job experience, preferably in IT-adjacent fields, would count in your favor, too.. in a nutshell, people want to see that you dont need a whole lot of handholding

especially since pentesting would not be an entry level field, usually.. so if this is the first real job you aim for.. well then you have to be convincing during the interview stage

understood

any further advices?

Make a plan B 😉

you are ALWAYS going to be in a better position, if you are not desperate for a job

a plan B

hmm

this will be hard to be honest

not really desperate, i just want the opinion of other people and make a plan overall

My choice of words may have been ambivalent - I mean a plan B like "well 4 people told me I am too young or inexperienced to be considered for a pentesting position.. how about working an IT job for a few years instead, get better at the language, perhaps, get more self-esteem, comfortable with the culture, etc

dont make this a make or break decision, if it does not need to be

right, i mean in this case won't really need a plan B since not long ago i have started working as an intern in an IT startup

One thing to consider for college

its not just for learning

its also for social networking and building connections with like-minded people

creating study teams to figure things together outside the syllabus

guess i haven't thought about that part

And businesses who specifically want people out of school tend to scope at schools

i will think about it and make a decision soon

overall thanks for the advices

Hello I'm new here ...

hello "new here"

U new here too ? @whole patio

let's not dwell on that ^^

Sure sure

So i texted cuz i was trying to learn ethical hacking as I'm very interested in that stuff

But idk where to go ...

#👥・new-member-guide should help

Thank you @fierce dove

@peak geyser

@peak geyser
I meant here

worst choice for a beginner sorry

youre running large cracks or what

true

intel chips...

i was silenced.

i see

dont press enter after every word

xd

every

word

i would recommend t14 gen 5 or gen 2

im using t480 and its still enough

but they know

ryzen version too

Doesn't really matter which one.. unless one would have specific requirements

Hi guys I've got a question and need some help so I brought an acount from someone changed all the info and stuff to secure it but try log on now and its been swapped to a new email I dont have access to does anyone know how to get into an email so I can get my acc back?

its mainly both a new hobby, and so that I can learn to protect me and my friends from dangers, theres a lot of crazy people who are hackers so :<

May I ask where the account is hosted?

Whoever took it changed it to a yahoo email and its connected to ea Microsoft and Sony

so an ea games account

Yeah

You are not in a good position here

If you are buying accounts from someone, then it is a scam.

technically, there is nothing you can do. Legally, you can sue them, but the transaction was a violation of EA terms and services to begin with, so... nothing really to be gained here.. could try to get your money back though claiming they committed fraud

You can try to report it to the provider and hope they get banned, but noone can assist here. You may also get banned.

I've emailed whoever has it now and I hope they get back to me and we can resolve it but if not ill speek to who I brought it from and say I either want a refund or a new acount

You most likely got scammed, so I wouldn't hold my breath here

https://tenor.com/view/damn-bro-you-got-the-whole-squad-laughing-you-got-the-whole-call-center-laughing-call-center-indian-gif-25440258

Hello..."sir's".pls I may use some help . I have HP laptop running on 64 win. I had try all I know technically to resolve my mouse pad and pointer problem..... dancing like Tom and Jerry. Pressing keys without touching anything on my laptop. I had clean and restart my laptop 16times in a role. It will work fine for a while then start malfunctioning again. I thought some one hack into my laptop and control my laptop but I doubt after trying shift control esc. Pls what I might be doing wrong or simply being a tech moron. HELP ! THIS PROBLEM IS ANNOYING.

Im back again

@whole patio im back

https://tenor.com/view/monkey-talking-on-the-phone-gif-9299946233689426

https://tenor.com/view/britney-spears-x-factor-fox-new-phone-who-dis-gif-14666995

Hey, I'm new here. I'm trying to hack Archetype from the starting point on Hack the Box. I can't do it :D.
impacket-mssqlclient ARCHETYPE/sql_svc:M3g4c0rp123@10.129.44.119 -windows-auth
Impacket v0.13.0.dev0 - Copyright Fortra, LLC and its affiliated companies

[*] Encryption required, switching to TLS
[-] [Errno 104] Connection reset by peer
I'm running this command, but nothing happens. After a while, it stops itself. I searched YouTube but couldn't find anything. Grok wasn't much help either :/.

Is it a touchscreen perhaps?

Hi yall I’m brand spanking new here. I’m battling cancer atm and figured with all the free time I have I’d dive into this and learn so i can be prepared once im done with treatment 🙏🏽. If anyone has tips or can give me direction I would much appreciate it!

Sorry to hear about the unfortunate news, https://discord.com/channels/990435451334688768/1306084252437450763

I know a few people who have gone through that, I am sorry to hear about it.
One thing that they have talked about is the brain fog from treatment, so I think it would make sense to set realistic expectations, and to not be angry with yourself if you end up forgetting some of the things, and need to re-review everything during treatment or afterwards.

Also keep in mind that this is stuff that can take years to learn anyways.

I would personally grab a topic that interests you the most, and stick through it, to try and learn it as best as possible to set a foundation in it. This will make it easier to recall later on, and will also help you transition to the other topics.

Some of the more broad topics to start on would be:

• Networking
• Hardware
• Operating Systems
• Application Development/Programming

Once you know more which one of those specifically interest you, we can point you in a more specific direction for learning and practicing that core subject.

Thank you so much for this 🙏🏽! I’ll definitely dig into those topics this week.

Hi, I'm new here

I would love to learn I'm a beginner

Are there any resources anyone recommends for those topics ?

Tryhackme that kaizen linked to in #👥・new-member-guide is a great website for getting an overview/summary of a ton of stuff. So if you aren't sure where to start, try there, and just keep going through the rooms.

Similar advise for you. Start with tryhackme from the #👥・new-member-guide , and let us know which rooms you enjoyed.

And which subjects you have more questions on

Okay thanks I'm working on it , and I bookmarked it, someone recommended it to me before but I didn't take it seriously

I'll be glad to learn and develop myself and skills

Thanks

Its great for the summary/overview, but there is for sure more advanced resources depending on which core subjects you want to get into

Advanced are paid right?

Or are there like free resources?

Does anyone know how to fix a PSU on a PlayStation slim?

Videos or PDFs ?

ifixit does: https://www.ifixit.com/Guide/PlayStation+5+Slim+Power+Supply+Replacement/168012

I don't have the 30$ :/

And it's for the ps4

But honestly, it doesn't matter now though, lemme learn the basics first using try hack me, before choosing a specialty

There is tons of free information on the internet. The only things you have to pay for is hardware so you can homelab and test things at home

Some things are nice to pay for, especially once you get going. like Certs

but i wouldn't start with that

Ah well ... I'm sure they have PS4 articles too. But to fix, you need tools and such. It would probably cost at least $30 for stuff like bits, soldering iron etc.

if a psu is broken, you really dont want to mess with it "fixing" it, you replace it

find out what you actually enjoy

Can a laptop do the homelab ?

I have a Thinkpad 450

Depending on its specs, sure

how many threads and how much ram?

https://www.ifixit.com/Guide/PlayStation+4+Slim+Power+Supply+Replacement/103362

guide is still a guide

Lenovo T450

Ram is 8gb

But I don't know what threads are

The RAM is a little low.
Is the laptop used for anything else?

8 gb is about the minium

how many cores does the cpu have

If it is your primary computer

f*** cancer, and good luck with your studies

No, I wanted to use it for plc programming but not currently using it

then i would just look at vmware/virtualbox/hyper-v

I know how to take it apart but one of the things are burnt and fried on there how do I fix it without buying a new one

If its an extra machine, start with installing Arch on it

you will learn a lot

After you install it, wipe it and do it a few more times

you don't, especially if you don't know what and how

then turn it into a lab

Arch, how do I do that?

a fried PSU gets replaced

Is there a guide on it please

You would need more specialty with soldering, and knowledge on dealing with high voltage equipment.

with capacitors that will put you in a hospital

at best

https://wiki.archlinux.org/title/Installation_guide

They have a great wiki

For a ton of information about linux

Follow the docs or use archinstall if ur lazy

and if the faulty psu in an indicator of other hardware problems, then this thing may go up in flames

obligatory 1.21 jigawattz

not yet

Soon™

That hair style is a choice

But I'm scared lol, I'm coming from windows, won't it affect anything?

sure will

It will entirely wipe the laptop you are installing it on.
You can revert that by using a USB + ISO to install Windows back onto it.

Which is why it is important that this be an extra/second computer

and not your main

Your main, you can come ask us questions, or have the wiki open

you know which of these t450 cpu you have?

@woven anvil oh I haven't cross check that. But the tourch screen works fine.

was already electrocuted by it

Whenever i've seen that, its been from "ghost touches" from a touchscreen

even though it works

it just decides to work when you don't touch it

you can know for sure by disabling it in device manager while its happening

if it stops immediately, then its your digitizer in the touchscreen

Oh gotcha...what do you think i should do ? Sell the laptop ? Lol

nevermind, they all have 2 cores and 4 threads

if it is that, then your options are replace the screen, or just disable the touchscreen

this is not something I would comfortably call a "laptop that can function as a lab"

great starter linux machine though 😉

and containers would work

no, and calm down

@civic lagoon
We do not do unethical activities.
#📜・rules

Ohhhh ok sorry just kidding

uh huh

we believe you

Ya jt was a joke

I swear down .....@woven anvil you re the best. Thanks I ll try that and revert. Appreciate your swift help

Keep them out.
#📜・rules #1

Lemme check I don't know actually

doesnt matter, they are all the same when it comes to threads

Okay

I checked in the meantime

If I want to use Arch install how do I do that

See.. a VM "takes" some of the 4 threads your CPU uses away from the operating system.. and your 4 are not a lot to begin with to run the host operating system

arch has installation guides.. all the linux distros have.. but it would replace your current operating system.. windows most likely

I guess you can install a single VM and use it to do THM/HTB challenges

the default kali image takes 2 GB and 2 threads

Hello

Im new

Running Kali on 2gb/2th was very sluggish for me?

Which is better kali or Arch?

Kali

They're just different

it runs fine with a machine that does not struggle to run VMs

Hi, I need help. I'm new here and I need help figuring out how to generate income with my basic-intermediate cybersecurity knowledge right now. I'm broke ://

you are on the entirely wrong server for that

people ask that all the time here, and they get the same answer

Then I am not sure, maybe Windows 11 is just bloated. I recently swapped to Mint, so I'm going to try VMs with this and see if things are better.

nothing "bloated" about it, but if your host OS really wants 4 threads.. and you take 2 of them away.. then the host gets sluggish.. and that means tools that run on it are also going to suffer

its technically possible to run a kali VM on the t450.. its just not going to be great

Oh, I was speaking about my machine, and my experience so far.

I'm on the Arch Linux download

it is a i5-8250U CPU @ 1.60GHz × 4

yikes

I wish I can send image

There are so many iso here

There's one with .sig

.torrent

i5-8250U CPU @ 1.60GHz × 4, a 4-core, 8-thread mobile processor from the 8th Generation (Kaby Lake R) launched in Q3 2017, featuring a 1.6 GHz base clock, 3.4 GHz turbo

Which one should I get

no one unless you have read the documentation for it

And theres normal .iso

you realize that this is going to nuke your current operating system, right? And arch is not recommended for beginners

Which is recommended for beginners?