#👥・help-me

honestly the best advice is actually two advices

okay?

i am really curious bout it

a) Just start somewhere.. don't make a plan to shortcut through it, it will not work for you
b) Find a way to sustain yourself apart from cybersecurity, give yourself time and opportunity to do it right

Further down the line, when you are intermediate and think about getting an actual job in cybersecurity... find a niche that you become ridiculously good at.. like make it really weird how good you are in this particular skill.. become the person people think of, when this topic comes up

if i told you what are the things ik will you suggest me things?

There are people here better equipped to do that

i will just write it anyone will help me anyways

everyone is good with suggesting and helping

Become a SOC analyst

reasons?

https://tenor.com/view/wolf-of-wall-street-jordan-belfort-leonardo-di-caprio-one-of-us-jonah-hill-gif-5441859

baised

I'm considering taking the google cyber security certificate but there're alots of opinions about it some say it's good n some say it's trash (i'm a CS study still in yr 1 with no exp in the cyber security field yet)
would you recommend it or not n should i start studying for Security+ or something else instead.

It is trash

n why is that

It is decent for entry

But theres better choices

Like thm

Mb it isnt trashy

Just decent

How to show them the window is opened

But also you stepped on a net also so they can put my folder back

Can teachers and people tell me how?

looking for a group who is either studying pentest+/PJPT and who want to study together, chat or practice with machines etc.

Hi im kinda new to this i recently have got beamed on roblox for a game that had about 350$ worth of in game items so i saw srhoe on ig and i could get teached how to hack and stuff

hello

Welcome to our server.
Please read our #👥・info and #📜・rules.
There will be no teaching how to attack services like roblox, as that is someone else's property.
We do have some starter materials in #👥・new-member-guide

How do I port scan a wifi getting past firewall?

I do have consent

This question does not make much sense.
Saying "I have consent" will not get people to tell you how to do unethical things.

Nooo I’m trying in on myself I’m sorry if it came off that way I’ve been trying for over a year

To port scan my wifi but nothing works

I’m sorry if it came off like I’m doing something bad

is subnetting and calculating subnets necessary for pentesting or red teaming???

😔 sorry

understanding, and being able to grab some paper and do it on the fly is a huge benefit. There are online calculators, but all you do is push what you need to learn further down the line, as "routes" and "Firewalls/ACLs" will rely on the understanding of how subnets work.

what resource shall i use for subnetting?

i can barely grasp the concept and purpose of subnetting

tbh

So I’m guessing I can’t get help on this

Its just a way to split up and assign networks at a very large scale.

Think about it in the context of an office of 1000 people.

If you make 1 /22 subnet that is 1022 IPs big and throw everyone on it, then it will work very slowly with the amount of machines working on a single broadcast domain (so if 1 computer broadcasts a packet, everyone sees it).

Now, we can break that up into more managable ~250 devices, which is a /24 network.

A good way to look at this, is that a /22 network, is as big as 4x/24 networks.

If we put IPs on this example, 192.168.0.0/22 would be the same size as the following all put together:

• 192.168.0.0/24
• 192.168.1.0/24
• 192.168.2.0/24
• 192.168.3.0/24

This means that at the head of the network(the main router), if I wanted to make a firewall rule that allows all the networks to access the internet, instead of making 4 individual rules so that I have one for each network, I can just say allow 192.168.0.0/22 to the internet, and it includes all of those networks.

😭

thats much easier to grasp

thank u so much dude

wait

192.168.0.0/24
192.168.1.0/24
192.168.2.0/24
192.168.3.0/24
I do not get how this works

because the cidr notation is like

wait so its 255.255.255.0 right?

correct

so theres 254 hosts available

correct

idk how we get from this amount of hosts to them 4 ip addresses

192.168.0.0/24 is 254 "usable" IP addresses.
This is 2^(32-24) which gives you 256.
Then you have 1 IP address marked as a "definition", and one that is used for the "broadcast".
This is how it gets down to 254.

If we take this same logic, and apply it to a /22
192.168.0.0/22 is 2^(32-22) which gives us 1024.
We apply the same logic to the IPs, removing 2 from it for the definition and broadcast, which gives us 1022 IPs.

If we ignore the definition + broadcast, then 256x4=1024.

This is the math way.

The visual way is to open a subnet calculator, put in a 192.168.0.0/22 network, and you will see that it gives you the available IP range that goes from 192.168.0.1 -> 192.168.3.254.

this heled me understand it better

thank u so much

also

I have a question, if private ips are supposed to identify a host in a LAN what is the point of a MAC address???

MAC operates on Layer 2. So thinking of that 1000 computers, you can't just plug all those into the router. So you have switches to give you the extra ports you need.
These switches operate and do their work all on Layer 2 with MAC addresses. Adding an IP layer allows you to continue the communication past the switches, and to the router. The router does not need to know what MAC the computer was, just that the packet is coming from that IP, and going to another IP.

So it lets us build out infrastructure in layers, where we can test each individual layer, and more easily scale it up large, and find issues, especially across different hardware vendors/manufacturers.

This also lets us run protocols that aren't TCP/IP across the same hardware, which was more important in the past, but is still probably important in specialized environments.

so if it reaches the router of the destination IP how would the end device receieve the packert

oh wait

arp>

?

NAT

I havent learnt this yet

i do have a brief of what nat is

however i do not know the indepth process of how at works

of converting the public ip to the private ip, well ik it has a cache or some sort of table

can anyone help idk why is their a group of hackers attacking my server on fivem i know nobody might care but im just trying to get my server up and running to have fun with a growing a community an everytime i get the chance to turn the server online for my city on the game they boot me offline.

whats ur discord server

If you look at a proper Firewall Rule, some of the information you end up requiring is:

• Source Address
• Source Port
• Destination Address
• Destination Port

NAT(Network Address Translation) will "translate" one of those values before sending it out.

The common types of this would be Source NAT (Although, i think Cisco calls it something different) and Destination NAT(Port Forward).

In a Source NAT, when you send a packet out of your network, your router first replaces the "Source Address" with it's own public IP. This makes it so that the server that you are talking to knows where to send the packet back to. Once the packet comes back, the router will put the real IP back, so the packet will reach the right device in your network.

In a Port Forward, you change the Destination Address. You normally do this when you are hosting a server, like a website or gameserver. This is so when people go to your public IP (Which will result in your router), your router knows to forward that to the specific device inside your house. When the packet goes back out, the destination IP is put back again, so that the computer that the packet is going to knows it came from your public IP.

There is also Port Translation, which is the name of a type of Port Forward, where you also change the Destination Port. This can be useful of the thing you are hosting is not on the port you want the public to be able to access.

There is nothing anyone here can do.
Contact the provider's support for assistance.

Can anyone help me unlock my old galaxy note 10+ that was password locked? A former employer of mine leaked and hacked my old email account

Or Any recommendations on recovering my old gmail account? I had to get a new phone number so I can’t complete the two by factor authentication

@gaunt mica
We don't assist with account/device recovery here.
Please contact google, and watch out for scammers who may be DMing you about this now.

Okay thank you!

Does anyone use flipper zero to check vulnerability

I'm new to scripts really just a hobby to learn as I go

You can't "port scan" your Wi-Fi, so maybe that's the problem with your approach? But that's the last I'll say, in case you're thinking of doing something unethical.

Not really, no

Looking for ideas / second opinions on a locked-down XiOne (Xfinity Flex) box
I’ve been poking at an XiOne (Xfinity Flex) box purely for reverse-engineering / learning purposes and I’m pretty much at the “this thing is sealed” stage, but I want to sanity-check if I’m missing anything obvious or if anyone has seen similar boxes cracked before.
What I know about the device:
• Xfinity Flex (XiOne), FCC ID: NKR-XIONEWN
• ISP-managed IPTV box
• Likely Linux + RDK stack
• Secure boot, signed firmware, OTA only
• Recovery mode exists (WPS at boot) but still signed / locked
What I’ve tried so far:
UART / serial
• Found test pads, confirmed multiple GNDs
• Found two pads sitting ~3.30 V
• Probed with USB-TTL (RX + GND only, no power injected)
• Tried 115200 / 230400 / 460800 / 921600 / 1500000
• One pad outputs consistent characters at multiple baud rates, but nothing decodes to readable ASCII or Linux boot logs
• Feels like encrypted/proprietary debug or gated UART, not a normal console
Network / MITM
• Bridged the box through a Raspberry Pi
• Captured traffic with tcpdump (DNS + HTTPS)
• ~20k packets over ~30 min
• Everything important is encrypted
• No firmware URLs, no plaintext APIs, nothing useful
• Almost certainly TLS + cert pinning
Firmware hunting
• Checked FCC docs, public repos, usual leak spots
• No firmware images, no kernel strings, nothing usable
CVE research
• No CVEs tied directly to this SKU
• Without firmware/kernel version info, CVE matching is basically blind guessing
Bottom line so far
• No shell
• No bootloader
• No kernel logs
• No firmware dump
• No writable access anywhere
From what I can tell, this is a properly locked ISP appliance, not an Android TV box that forgot to disable debug.
At this point, the only paths that seem remotely viable:
• eMMC extraction
• Early-boot UART capture (if timing/auth is a thing)
• Leaked firmware
• Known RDK exploit affecting whatever version this runs
• Fault injection / voltage glitching (probably overkill)
If anyone has:
• Seen XiOne/Flex/X1 boxes cracked before
• Experience with RDK internals on Comcast devices
• Ideas for non-obvious access vectors
• Thoughts on that “consistent but unreadable” UART output
I’d love to hear it. I’m assuming this thing is sealed unless proven otherwise, but figured I’d ask before shelving it.

Hey guys , Im Currently doing my masters in cybersecurity , Can someone help me figure out some capstone project idea related to cybersecurity domain

here’s an article i found with a few examples, hoped it helped 😊

https://honors.uic.edu/academics/capstone-project/capstone-project-samples/

Thank you @restive rover will check it out

ofc noprob

@restive rover can you help me find something related to cybersecurity

I actually had the idea to create a cyber range , but i have no clue on how to get started with it

@strong wren what are you going to do with a disassembler?

Why exactly does it have to be a project with capstone, any goals you need to achieve?

So the end of the capstone is solve any real life existing scenario or problem related to cybersecurity

hmmm , i might just create some labs

basically to complete my masters , i have to submit two capstone projects ;🙂

I see

yepp

I mean in the field of malware analysis it's often handle to emulate pieces of code of a binary that are hard to analyse because of obfuscation techniques, or simply just because its faster

Think of decryption routines

You could write an emulator for some instruction set

It is some work however, but I suppose since you are doing a masters it should be alright

okay cool , I ll have a look into it , thanks a lot

if you come up any other idea or anyone gets any idea which can help me pls let me know

https://networksimulationtools.com/cybersecurity-capstone-ideas/ this is what i found

Cool bruh thank you will check it out

hey guys whatsup

can anyone pls recommend resources to me for c++?

YouTube free code camp

.

Any book recommendations for cybersecurity
Im a beginner and just my first gaming laptop & im interested in cybersecurity

What field of cybersec are you most interested in?

#📜・certs-and-career
#👥・new-member-guide
#🛠️resources-tools

Honestly idk
Im goin to the airforce for cybersecurity so I want to be prepared

Thanks ill check it out

Well, figure that out first 🙂

Lmaoo I just want to know the basics
Im already aware of the basics of kali and comptia A+

For books

Here you mate
https://security-books.notion.site/

Thanks broski

Np mate

All the best
You can start with the tryhackme

It's friendly and easy

If you’re doing that why not just join Space Force?

Gotta score higher

But ill ask my recruiter if thats the case

Hey im new to everything in general here. Do you guys think you can recommend me ways to get comfortable with linux? I have a laptop with mint on it and ive been using LabEx (linuxlearningjourney.com) and its honestly been a great help but im curious if there are any better ways out there. (I wanted to learn it so i can play overthewire and because i have a great liking towards this whole field) thank you all so much for taking the time to read this. (Is it worth it upgrading memberships on hackthebox??)

Issue. New to forum, asking for guidance on where to seek assistance within this community.

Situation. A friend of mine was part (victim?!) of the recent (5 Jan 26 announced) Ledger data breach. I am broadly capable but novice in the cyber security/ethical hacking space.

Task. Hoping to find support/advice to help understand how to; find the breached data and set monitoring to ID/warn if my friend/their investment company is being discussed/targeted.

Any advice would be much appreciated! TVM

CONFIRMED DATA FIELDS:
Full names
Postal/residential addresses
Email addresses
Telephone numbers
Order details:
Order number
Product purchased (confirms Ledger hardware wallet ownership)
Purchase date
Price paid

Just a question

I saw a guy use a keybind shortcut to switch between two different dotfiles like in gui

does anyone know about that?

I’m a beginner bug bounty hunter and actively practicing on HackerOne / Bugcrowd.
My short-term goal is to earn my first $100 bounty and learn proper methodology this week.

I already work with tools like httpx, gau, nuclei, Burp Suite, and I’m focusing on recon, exposed endpoints, and misconfigurations.

If any mentor or experienced hunter is willing to guide me on what to focus on or review my approach, I’d really appreciate it.

I’m consistent, serious about learning, and happy to share progress.
Thanks 🙏

listen to jason haddix if you havent already

hello guys any good course for full linux + ?

Linux+

?

Over the wire

I mean like full course video playlist

Does anybody know

How to use tiktok in arch?

Not for me

Does the website not work? I’m genuinely asking because I don’t use TikTok

It does

Bu for further uses you need to have the app

Me neither

Then they probably have some mechanism to validate where requests are coming from. Maybe it can be broken, but why go through all that effort? lol

My friends want to do ctf solvings in tiktok

Hello guys

I need help

Their host id linux

I need someone to teach me how to hack a instagram

that statement doesnt seem suspicious at all

https://tenor.com/view/i-guess-bro-gif-12146675677296761392

help anyone

where could i get resources for security for a nodejs/react app!?

TikTok is running a CTF? lol.

Take a look at OWASP

noo

theyll open a live

thanks for the pointer kind stranger ily

here tiktok is famous so

No problem 🫶🏽

Bro wtf is this

You think that's ethical?

I am not a ethical hacker

Wow

Xd bro don,t waste your time on such things.

🤯

Be a ethical hacker do hacking for privacy and security and to stole someone account

Thats unethical to stole insta

bro got ragebaited by someone now he wanna get them banned 😭

is there really any reason not to use nestjs for my backend except its kinda bloated thats all i could gather from searching on google

hi guys. I am new here and had some questions. Starting to learn cybersecurity, need some help to understand where to start and from what to start

Anyone has a 0day account?

@gentle bronze
Please make sure to go through our #👥・info and #📜・rules
This is an ethical CyberSecurity server. Don't ask for unethical things here.

Start learning Kali

Before networking?

After

What do you mean by this

There is no "Learning Kali", there never was

Can learn linux + the tools that come on kali. But you can do that with or without kali.

• Networking
• Hardware
• Operating Systems
• Applications(Programming)

Its just linux.. and some tools, that you could install anywhere else. And you don't need to learn about all of the tools.. "learn the craft, not the tool"

What do you mean by this.

The craft will be done through tools

No?

The tools mean nothing, if you do not know what you are doing, how you are doing it and what you are doing it to. Also tools change all the time, and there are usually numerous alternatives that do about the same

Not understanding the infrastructure that the tools run on means you are blindly memorizing + copy/pasting things.
This means that there is no ability to "think outside the box", because you won't know what or where the box is.

Do not start with the tools

I see

And in Cybersec especially, if someone thought about it, then its not new.
So you are pushed to constantly think outside the box.

Well I know a little programming and some basic cybersecurity concepts, OS and networking, what advice would you give me? What should I learn next?

I would still point you to #👥・new-member-guide

Everyone has a different view on that.

My personal preference is to start homelabbing, and spin up all different types of servers/setups/networks/whatever.
Learn OS lifecycle management.
Learn OS Config/Policy management/enforcement
Learn Advanced Networking like your own VPN + Exit nodes, or BGP
Learn advanced programming concepts, like how a language truly works based off their official documentation,
Learn advanced hardware concepts, like how a language compiles down into assembly, and runs on a CPU, and how a CPU is even built in the first place.

Cybersec is taking each of those fields, and being able to find common misconfiguration issues, either done by the programmer, or the network administrator, or even in the design of the spec itself, and then being able to protect against it, understand proper documentation + reporting of these things, and how the legalities and "Scoping" works.

That being said, the resources in new member guide as Eris said will help you start understanding the concepts if you aren't sure what the heck im talking about above.

I never looked at it this way, thank you for this.

This is also why a lot of people who work in the industry will say it takes years to even get started, because you essentially have to learn what IT people learn, to understand "What is the correct way to configure an SSH server", so that you can also practice and understand "What are the wrong ways to configure an SSH server, why are they wrong, and how does it open up my surface of attack."

vs just learning a tool that attacks an SSH server. If the server is still slightly misconfigured, but not enough for the tool to work, then you are just stuck, and don't know why.

or if its a complex network

Got it, thanks

Can someone help me with a CTF?

It's been 4 hrs and I'm still stuck on a 50 point pwn challenge

Whatever you decide to do, if unsure - make it something that gives you more opportunities.. home labbing is fantastic

What CTF is that

KnightCTF

As a general rule no one in cybersecurity is going to help you in a live CTF.

Those are meant to test what you are capable of, not how many people you asked

The usual advice still applies though.. don't get stuck in rabbit holes.. if in doubt, enumerate more

I see

Btw

How do I enumerate?

It's my first live ctf

Can anyone recommend a good online course to get into cybersecurity?

Yooo

Any high educated users wanna help me on a certain topic/ task ig. I would enjoy the help

#👥・new-member-guide
Google cybersecurity course

Eloborate 👀

yo

Ight so long story short. Somebody hacked into my social and changed my email and phone so I got no way of getting back in ts been like over a month now n I contacted AND emailed their support and they don't do shit

What do I do?

anyone free to help me..?

Just ask the chat

If whatever service providers support is not going to help you, then neither is anyone here

Thank you

yeah sure!!

Why Is that though? It's not that they won't help me it's that they won't respond like they literally don't do shit

There are two answers to your question

1st
Because if the support isn't going to help you, then you are in the same situation as some random stalker who wants access to any account he wishes, and is looking for people to do that for him. Stalkers lie and regularly tell us some sob story.

2nd
It would be highly illegal - this is not legally "your" account, it is the account of that social media service.. and you are asking us to attack their infrastructure to obtain it.
This is like me asking you if you would be so kind to break into a bank, cause I have, or at least used to have, a bank account there and don't worry.. I only want you to take "my" money, not other peoples money.. I have no proof how much money that would be, but just believe me.

As discord logs and monitors everything we say and do here, its just not smart to ask and to agree

or, TL:DR - its against the #📜・rules

Ian say nothing bout attacking or yall doing anything for me just for advice and answers

But yes I totally understand the legal and weird side of things

I'm jw if my shit gone forever

Oh, okay, my bad then
The advice is "contact their support about it"

Had 5 years of memories on thst acc

Tragic

we get similar requests about once per hour.. so the answer tends to be "efficient" 😉

Anyone taken comptia a+ I'm doing my test tomorrow

What should I do after finishing the Google Cybersecurity course on Coursera? I want to focus on penetration testing and in the red team. Should I get an EJPT or other certification, improve to program and scripts, or do something related to THM or HTB?

Entirely up to you, all of those are covered in either #👥・new-member-guide or #📜・certs-and-career

@cunning meteor
We don't discuss that here, especially as >90% of the stuff there is scams.
Do not ask for this in our server please.
#👥・info
#📜・rules

i need help about cloning a website

Okay, thanks, I'll keep that in mind. It's just that I don't really know how to start, it's quite overwhelming.

It is

Thats why we have those links 😉

Anyone who knows reverse engineering?

https://dontasktoask.com/

How do you know what part of cyber security is interesting to you as a person before going out and committing to a specific team?

I see red team, blue team, but ... not even sure what I like...

Best Ai for generating code?

The only thing im really worried about is if the chat gets laggy after you send too many messages

If you are unsure, you may need more fundamental knowledge about it and are not locked in into one of them anyway

Thank you @turbid glacier and @whole patio will do more research into fundamentals... this really helps ❤️

What do i do to self host ai that can search the web for me?

How can I start my hacking journey ?

#👥・new-member-guide

jailbreak prompt 🙂?

Is there a platform to get more experience with linux outside of tryhackme?

I could, but I’m still inexperienced with it and wasn’t sure if there’s any other platforms that helps you learn how to use it

Thanks

Hey 👋 guys how are you all doing ?

download vmware or virtualbox and follow the instructions on how to burn a linux flavor disk on there and test it out in a secure machine

i wanna os swap windows for kali linux but idkkkk, is kali even good

Is ZeroTier or TailScale better?

Just install in a vm and test

thats what i was thinking

Ubuntu is most or one of most stable - used as server os

They have more drivers for random obscure devices also

I use fedora

Anything with rolling software updates like arch or fedora has more up to date stuff. Debian based stuff is extremely stable but slower moving(updates in waves)

It’s Debian, so really stable

Based on Debian I should say*

i figured what i would do is os swap for windows for kali to user for everyday tasks, then install my usual virtualbox to burn tails to use for all the special stuff i had

^

Cool. Tails is best used on a thumb drive though

Cause it can be accessed from any computer as long as you remember you’re encryption password

yeah that makes sense, just didnt wanna have to dual boot or hot swap through the bootloader

And it can be immediately unplugged to shut ssystem down without harm

makes sense

Would recommend using vm to get used to Kali to start

Or any Linux distribution

right

Just be careful when doing an actual dual boot cause windows loves to steal your boot loader

So you have to unmount or unplug the windows drive before installing the os

That’s the easiest way/most straightforward

Hey beginner here - I'm struggling with enumeration. Any tips to get better - where should I start?

Networking, pen testing , and digital forensics channels prolly have more knowledgeable people on. Also check out the “new member guide” channel

Thank you

Yup

I maintained an Arch server for a while. Never again, lol.

I haven't used tailscale, but its going to be "wireguard vs zerotier" essentially.
If you want to self-host the admin interface(and therefor, unlimited devices), Zerotier has "some" options, but Netbird feels much nicer than headscale imo for a wireguard implementation.

do you know any good digital forensics channels? If so, how'd u find them?

not off the top of my head

lookup how to use wireshark, you should only do stuff on your own network btw (illegal otherwise)

CachyOS is coming out with a server distro

may be a bit much to start idk.

will have to take a look

@cobalt terrace
Don't ask for unethical things here.
Read our #👥・info and #📜・rules

Looks cool! I’d never heard of that distro. I can see it’s got an optimized kernel, but they also claim stability, so does that mean it’s not rolling release?

I don't know what they will do with the server distro, but their current distro is rolling release.
Their claim of stability is from:

• Optimizations in the kernel + compile flags for applications in the repos
• Pushing tools like Octopi + paru that attempt prevent things like incomplete updates
• Giving users GUI buttons to fix common pacman/repo issues.

So take it with a grain of salt, as it is still arch. More details on their kernel changes can be found here
https://wiki.cachyos.org/features/kernel/

I saw this on the arch discord, never looked at cachyOS again

Having used it, it for sure doesn't feel that way at all

My SO has/had it installed, and the system broke twice already

What broke?

And was there a "fix" for it?

You guys have any good cli only distros that fit on 1.44mb floppy disks?

Preferably bash

Wasn't my system, I don't know

I’m just using dos rn

how much RAM on the system?

Don’t like it. Very much

630kb

Kolibri doesn’t work

So I’m just thinking a cli would be better instead

fli4l is still a thing

Ok, because I do support a few friends that have switched to linux, so I like to know when things happen.
I won't say it never breaks. For sure have had a few audio things and what not. But it has been easier to support remotely than anything *buntu based.

im an investigative journalist and has been scouting out prime cases in my region... this has become quite hard since digital info is soo hard to find nowadays( maybe coz of my skill level) i practice basic paint but can't seem to push more where do I start

It looks like you don't know where to find
Try learning google Dorking/OSINT

exactly my problem dunno where to start looking im effectively blind... will do but google dorling gets u only too far

i can't exactly tell u what I need but my use case is kinda "different"

guys

who can help me with forensics flag

dm me

A CTF?

kinda

but not fully

Also, don't spam across channels please

sorry

but thats the final flag i need to get for my assignment

i did 132 flags across 2 weeks

im a beginer and im really stuck at it for few days

so just seeking guidance

We typically don't help with flags here, as they are suppose to be a show of your ability to perform, not your ability to ask others.
But common advice i've seen is don't fall down a rabbit hole, take a step back, and if there is anything that you are unsure of, look it up and better your understanding of it.

yeah i have a file

jpg and thats blank

and ive got instructions about it

and then i gotta decode but thats eating me up

so was wandering and asking for help

Sure

hey, i got hacked recently on discord and instagram and im pretty sure roblox, they sent crypto scam messages to everyone i know and on my story too, even on discord they sent it to everyone and im really scared they go for something else. i changed the passwords and i logged out of google on my pc and i dont know what to do..

dm??

back up your data, and reinstall/reset the OS of devices you use to access those services.

so i reinstall w11?

I don't know what devices you have.
If you have an iPhone, make sure it is up to date.
If you have an android, go through your installed and running apps to make sure there is nothing weird there.
On your computer, you can use something like Malwarebytes to scan, but if you find anything on any of the devices, you can wipe.
Make sure you reset the password for the account from a known clean device before the wipe (so reset the google password before resetting an android phone), and make sure to go through all your account settings to:

• Enable 2FA
• Ensure any recovery phone numbers only match the ones you are expecting
• Ensure any recovery emails only match the ones you are expecting
• Check previous login sessions, and see if you can "sign them out"

alright thank you so much! ill install malwarebytes asap

Backup things you care about, and make sure to scan them multiple times with multiple scanners if you are putting them back onto any device.
Anything that is "kinda sketch" like a crack or anything, just throw away and don't touch.

Hey I just want to confirm something....
Is it okay in these times if I use AI for making projects for my resume. I mean planning all the features file structure data flow APIs, authentication to use etc. but writing code part should I use AI for it?
If yes how much and in which way should I use AI.

i scanned my whole pc (180k files) and there were 5 resolved files and another 6 unresolved items

with bitdefender

Update it’s a black screen now and I can’t do anything @woven anvil I closed my pc and it didn’t do anything it’s the loading cursor and a black screen on 2 monitors….

keep it off then, and you are going to have to recover your stuff if you need any of it with a live linux USB, or you can just ignore it and reinstall the OS if you don't need your files.

Alright I left the house I’m grabbing a love Linux usb right now

Excuse me, can some one help me, im stuck on this tryhackme
What is the name of the service that lists Systems Internals as the manufacturer?
Isn't it Sysinternals, but it can only hold 10 letter. Any idea?

try PsShutdown

Dude Thanks

Can anyone help me with other links I can deploy my full stack web app without being suspended .. render and vercel ain’t helping

Is it possible to work in cybersecurity while studying for a FP in Spain (I think it's equivalent to a community college) and being self-taught while doing that?

i really need help decrypting something

this is what chat gpt told me:

I can’t actually decrypt this as-is. What you posted looks like encrypted or hashed data, but decryption is impossible without the method and key that were used.

Here’s why ⤵️

What this looks like
• Long hex strings → commonly ciphertext, hashes, or keys
• Base64-looking parts (e.g. gZhP2-Sf1GsQtSEBDSbA)
• Colon-separated segments → often salt : hash or iv : ciphertext
• Special characters (^ % * & ?) → suggests password-based encryption or hashing

please dm me if you think you can help

Need more context.
What kind of file format is it?
Is it CTF related?

dm me

gyus is there any way i can reset my amazon lenovo thinkpad? ig it is locked.... it keeps showing me chromeos

So, my provider doesn't have a public IP for each user on the network. If I look for the public IP, it's the provider's public IP. If I get it, it won't reach my terminal; it will reach the internet provider's central office, and they won't know which Wi-Fi network is receiving that information or which one to send. Therefore, the best solution would be to find a free, anonymous web server, you understand?

🙂 nahh

@slim hamlet I don't have a public IP address, which server can I use to host some programs?

like what u wanna host ?

ya what u wanna host?

Can I speak?

It would be a RAT for laboratory testing.

I don't think there are "amazon lenovo" thinkpads. Find the exact make and model of your device, look for guides there

i mean it was provided by amazon and it is locked.. by the IT admin

Well then either accept it, or ask the admin to unlock it. We don't help with likely stolen devices.

sure

six seven

Are there any Brazilians here?

well u can buy a server for some bucks they have all ports open

Is better to do first the eJPT or the Security plus? Or train with THM

He and Cadbury? How much would it be? Would CasaOS be a good option?

Any VPS and see which images they allow you to install

No use asking here - take a look at providers

Could I leak some data to you guys, or is that not allowed here?

#📜・rules see for yourself

It's always good to ask.

If you still have to ask after reading the rules, assume its not allowed

For me, as a Brazilian, are you able to understand me perfectly?

Dunno

Guys, how can I join locked Voice Channels? All of them are locked :((

I don't know what you wanted to say, but I can understand what the words you chat mean

Ask about 5 or 6 times in #💬・old-gen-chat

For me, learning English doesn't make much sense because it becomes meaningless in programming. in my opinion

Let me search, thank u sir

If you say so. Kinda not belongs in #👥・help-me though

hello

@whole patio Thanks!

anybody can help me bypass persona kyc for outlier.ai

am currently using vcam to spoof

No #📜・rules

Check out the https://discord.com/channels/990435451334688768/1182147223266537553 thats not allowed

Do you know of a website that transfers and withdraws money via Pix?

no account verification

?

hey guys, i need your help, someone stole my gaming account on which i spent 8+ years. i did had the account protection codes but last night i try to login back using that code but since i used that code now i no longer change the phone number attached to it, i have to wait 7days but after 6-7 hours thief again changed the email adress usning phone number.

https://discord.com/channels/990435451334688768/1182147223266537553
DOes this fall under illegal activity?

Report it to the platform nothing we can do to help here

Contact the support of whatever game this is

It would be KYC.

sorry

And in my country, they are very strict about these things.

they are idiots, i email them but they keep repeating contact us in-game only. but every time i contact them in-game they ignour me and end the ticket without varifying anything they didn't even ask a single question from me

same with mine but thats avoiding laws/regulations and thats not allowed here

Still their support is the place to go to

Keep sending emails thats all we can advise at this point

i do have the phone number which thief is using,

again send this to the support team there

great, still a case for the support

Is the core message here coming across?

Can someone recommend a vulnerability automation tool for vulnerability testing websites?

zap

pretty user friendly

Github url?

https://www.zaproxy.org/download/

Zaproxy, it's already in all the cool repos

OpenVAS, Zaproxy, Nessus (free)?

i need your help, i'm just drowning in an ocean 😭

Is it possible to work in cybersecurity while studying for a vocational qualification in Spain (I think it's equivalent to a community college) and being self-taught while doing that?

Yes it is

Just give little time everyday

Rest i believe @steady palm is more experienced

100% Agree

hey yall, i need help i want to track my older sisters activities but im not sure how to becuase she has ran away with her boyfriend and i just want to keep track or sum of her thats all.

#📜・rules
We don't do that

That's illegal

can anybody tech me how to hack and that stuff

how was your experience using OpenVAS ?

pls

look at the #👥・new-member-guide

thanks

I'm not to good with OpenVAS to give a valuable opinion, but based on my experience, it can find many vulnerabilities and attack vector, but u need to need to customize it to extract the most value. It has lots of tutorial online, EZ to setup, can run it while u testing manually to save time, so I think it's powerful and worth a try

thanks for you're opinion

you had to know that is a "hard pass", right?

it would be 4-5$ ig , idk about casaOS

Rate my routine, as somebody who is completely new to even using computers on my journey to become a read teamer:

Phase 1: Basics & Essentials
[1] Learning Computer Architecture & How it works / [STATUS=DONE]
[2] Learn Networking (Via THM Premium Presecurity) / [STATUS=DONE]
[3] Complete Cybersecurity 101 & Learn Python / [STATUS=NOT DONE]
[4] Move onto JR Pen tester & Set up my virtual lab / [STATUS=NOT DONE]

Appreciate if you could add or make this better, as i am really dedicated lol

Hey I need help

Guys is it possible to change apps time by changing phones time

depends

One would assume that you you would ask a question then

Ohh

Is there any way to find the IP of an website

Yah

Of course, its public

The real IP?

Thats like asking whether you can see the nose of a person in front of you

Hmm so how find that nose because I'm blind

Lol

first of all, there is no "real IP" to a website, there are IPs and address translations and CDNs so that you can find the IP that a wbsite is accessible to you - right where you are

ping domain.tld is showing you that

Ohh so I can't see whr the website from?

What makes you think there is a "where from"?

if you ping the kali repository URL, you get lots of IPs, depending where in the world you are pinging it from, and they are all real

Sry bro I'm not advanced like u 😭

you can triangulate the geopgraphic location of a server by its ip by pinging it from all over the world, too - if that is what you mean .. can probably tell the nation, maybe region

"real ip" is so 1990

Yeah the website is hosted in cloduflare

Really dont know where this concept of "real ip" is even coming from.. would you think there is a "real ip" to the google search engine?

@magic token
Please read our #👥・info and #📜・rules
No piracy discussion here.

Can you send a snippet of what you’re trying to inject

If you post it here more people can help

i cant post, i dont have image permission

Just copy paste it into the chat

well you are not trying to inject an image, do you

im not sir

so post the string

how can i obtain image perms?

so i can post the screenshot here

raise rank to level 25

couple of months maybe

Just copy paste the string of code

can i dm it to you?

okay

No just type out the sql code that you are attempting to inject into the website

Well this isn’t sql so that’s probably your issue

also you are trying to inject into a real website

This is just a string of randomness

im pretty new at sql injection, can i have some tips?

im trying to bypass it using a hackbar

Wait hold on is this a real website or what is this for

It is a real website

https://diversityplus.com/

yup

Dude we don’t help people with stuff like this

com kids always trying to do something unethical lol

You know sometimes I think I’m just too optimistic that somebody is actually looking for help with ethical skills.

im sorry, i was just learning.

stop lying already, its pathetic enough as it is

You don’t learn on real websites unless you like the government arresting you

oh

where can i learn such these stuff without getting arrested?

#👥・new-member-guide check this for resources. I recommend something like TryHackMe or HackTheBox

thank you

sir

And stop doing shady stuff

By now I don't really care what peoples ambition might be.. unless I know them quite well or personally, the answers stay the same

I like helping though it just seems like most people want help doing unethical stuff. Makes me sad 😔

I do, too.. part of me just assumes that there are not more people with nefarious intents, its just that those who can't get it done are the ones that cry for help from an adult the most

in a way it is beautiful 😉

Yeah that’s totally fair. Also I think tons of people think it’d be so cool to hack something but don’t actually have enough patience or desire to learn so they just run here to get someone to do it for them.

That's certainly how it is

Oh well 🙂 The next lost roblox account is probably just around the corner 😉

Can you help me

I want to know what is mac address

What have you found out so far on your own?

Actually today I was in clg.. i saw our new wifi router

I asked my Class mate when they will give us id pass to connect to it

He said it's going to be a long wait.. i asked why not take it from our sen. He said the wifi work on Mac adress principle one device only

Thanks for the background info, but what have your found out so far about what a MAC address is?

@whole patio I know that every device have ip adress which interny use to diffentiate devices. Some like that

Did you never enter "mac address" and "wikipedia" into a search engine?

Nope

Okay mb

alright.. well mac address are actually voodoo based rune magic with santeria origins

Nice I didn't even understand a word

Like mac adress is permanent type of id or digits given to a device

well you didn't before, so there is that

Ip can change but not mac

mac is not supposed to change, yes

But it can change

Maybe

or "it depends"

Software or hardware

if your house number is an ip address, then your houses geolocation is the MAC address.. yes.. you "can" pick up the house and move it.. but it is not meant to be done

and unless you know what you are doing, people broke their system fidgeting with hardware IDs like mac addresses

Finished the hack the box , the free part and really focused on cyber security if I want to get deeper into it should I just pay for the subscription

If people could use google that would be great

My favorite stories are the ones of people that got banned by some kernel level anticheat online game software.. changed their hardware IDs with some tool they found online, and now their whole system is "New number, who dis?"

So I mean what the significance. Is it use to identify device is it meant to secreate. How it is diffent form ip. Why not ip treated as mac. If there is limitations in ip then why not upgrade it. Why to create whole new system

cause the assumption is that the same mac address means its the same device.. so your router recognizes you and gives you the same IP it usually does for example

also you can say new, unknown mac addresses that they should go pound sand, no internet for them.. which is your situation

Ip adress is given by wiFi ! I thiught every device have their own

Well that's explain how vpn works ig

and how does the wifi router nows whether a device is the same device as the one yesterday?

has nothing to do with vpn whatsoever

Brake brake..

One doubt ..ip exclusively unique for each device

Right?

certainly not

IPs are assigned.. nothing says they have to be assigned one way and not a different way

Ip is dependent on..? Hardware or isp or what..?!

whoever assings the IP

You can assign your own IP to a network interface.. or let some service do it for you

remember when I said IPs are like house numbers? If you move to a different city you do not keep your IP

Let us just ignore that private and public IP exist

Oh.. i have phone x. To explore web or internet I need ip. I can get ip from a service Like sim or wifi or can generated my own

feel free to tell them

Anyone knows the vulnerability which was used in the Sony hack, 2014

Thanks ig..

Google says none

Thanks

Pretty sure it was mainly social engineering, there was a darknet diaries episode about it a while ago

@whole patio MACs can't be used to reliably identify a device. it's easy to spoof, and most OSes now have wifi mac randomization as a built-in feature for privacy

I know.. but I don' think that this would have helped the OP understand the difference

they can be spoofed, but they are not supposed to - you have the vendor part, you have router assigning addresses based upon them, etc..

https://tenor.com/view/rust-cohle-true-detective-gif-16789583124365199963

still, quite often - same MAC is interpreted as "my old buddy device XY, here, take your usual suite"

How to start hacking as a 14 yr

we collected some starting resources #👥・new-member-guide and here #🛠️resources-tools
You may or may not lack the solid foundation in IT though

Alas, this is not a field that can get easier just because one is new to it

Bumping this

doing things you're not supposed to is fun though :)

definitely still common, but a security flaw unless there are other controls in place

i started around that age. the resources Eris pointed you to are great. main thing at that age is really dive in and learn how computers work

It sounds like a DRM controlled device, and it sounds like bypassing its security would be breaking your terms with the ISP.

More or less. In a cell network your carrier assigns the IP to you, and I’m pretty sure you can’t change that even if you wanted to (I don’t understand the specifics because in telecom engineering you have abstractions like “subscriber” and “base station,” etc, which are not present in Internet networks).

In your WiFi network, most devices just receive an IP assigned to them from a DHCP server, which is a special role in the network that handles this automatic IP management, to make it seem magical for users. Or you could self-assign an IP, but then you also have to configure your interface to have all the settings you need to establish proper routing, etc, in your network (and you run the risk of colliding with an already assigned IP).

Also, to clarify further, the DHCP server is usually running in your ISP-provided gateway. So it’s not like an actual machine, but just software running on the router along with all the other stuff needed to run a LAN.

And DHCP usually only works in LANs. Your gateway receives another IP from your ISP through other protocols (usually PPPOE).

Thanks man

hello, i am looking to make a small external storage/ server
i remember in my CEH course our teacher talked a bit on mini server and having back up. using the info on disk 1+ info on disk two = info on disk 3.
in my imagination i am think to make D 1 & 2 1tb each SSd and D3 an HDD
is this even fesible? can someone discuss it more please or show where to search for more info

Ur amazing

Do you mean a RAID setup?

A bunch of ISPs do normal DHCP for home WAN connections too.

If it is, then RAID makes for a terrible backup.

no

What type of data is going to be stored on it? File level? or Block-level?

Hello all

mainly normal media like old vids and pics, its going to stay offline and in my house so no need for any major security procedures

we have two laptops and around 4 phones, and almost everything is full now.

someone suggested just a normal esternal storage, i plug it and dump everything on, then store it in the drawer

So your understanding of the suggestion is to move things off of the laptops and phones to make more room, and store it offline separately for security?

yes but not for security

just for the sake of storage

So, I will say that you have been lied to from the start.

That is not a backup.
If the data exists in 1 spot, then there is no backup. That is just where the data is.

Any single piece of media can fail. So important things I want to keep, i would not trust to that process.

but i was seeking something for easy backup in case of a disk goes bad suddenly

So your mini-server idea, you would want to break it down into what is important.

• How do you conveniently get data to your server, so its not a "chore you forgot to do" in the future?
• If 1 disk in the server dies, how much redundancy do you want, so it can tolerate the failure and keep running?
• If the server itself catches fire or anything, how are you assuring yourself that the data can be restored?

here what my undertanging from my class is:
disk 1 value 1
disk 2 value 0
disk 3 value = D1 + D2 = 1
lets say disk 1 went bad, i can know the stored value from the other two => d1 value = D3 value - D2 value = 1

this way instead of needind a 1 tb to back a 1tb device

What you are explaining right now is called RAID.

This is used for redundancy to keep a server running, and is not the same as a backup.

maybe 1 tb will back up 2 tb total

this is raid with a parity disk

ouhhh ok

The key difference is if you make a mistake, you can't revert to a previous point in time
and if the host has a major malfunction, all the disks inside are at risk.

i learned about the idea 2 years ago so my memory is not clear

search on backups vs redundancy

RAID is not a way to double your storage, it probably reduces the available storage space

perfect, thank you

i mean, RAID0 can increase your storage.

At the risk of "if 1 disk dies, you lose everything".
Usually not preferred.

i aint doubling any storage with magic, its just like instead needing 50% to back up data, i would need around 33% of it to keep it backed up

but yeah, RAID almost always gives you reduced storage than the sum of all the disks

everything i am talking about is local so no need for fancy stuff since its personal use

Everything im talking about is local too

yeah precisly

including having your "backups" be a separate device/computer than the device that has the primary data.

i will try to draw an illustration of my imagination

i think you'll save yourself a lot of time if you look up raid levels and backups vs redundancy first

i cant share the screenshot >: [

it worked

what i wanted was the raid 5

striping with parity

Now look up all the reasons why RAID5 is not recommended.

🥲

@woven anvil @haughty dawn thank you both for the great help

@civic grove
Don't ask for help with unethical activity here.
Please read our #👥・info and #📜・rules

hi i am a desktop support engineer and have 2yr exp and i want to switch in IAM role. i am not a coding guy can anyone here advise what's the best option for me?

Hello this is my first day trying to learn cybersec but i didn't find any good public learning source any tips plz

In termux I want to install an Kde plasma with not apps like Firefox and libre office but I am stuck on Termux11 and any other local desktop viewer, --shm-helper error is actually a PRoot and Android 15 compatibility issue

hey

#👥・new-member-guide

Maybe start with python and powershell

Wow, for real? I didn’t know that, thanks for sharing that! Is there like authenticated DHCP or something?

look at job postings for the kind of role you want. tailor your resume to emphasize the skills you already have, and look for opportunities to build the skills you still need in side projects. look for opportunities to apply for a transfer within your own organization or see if you can get a referral from a colleague or friend for roles at other orgs, if you can.

Some of them will bind it to the MAC address of the onsite hardware(ISP Router)

Ah, that makes sense.

but others don't care after the modem connection

Yeah, that seems really insecure, lol.

My ISP does a weird "PPPoE Passthrough", so i technically can have multiple WAN IPs without extra cost at home.

insecure as in one could interact maliciously with that DHCP server?

As in, what’s stopping anyone from just plugging random hardware in and getting a free uplink, lol?

ISPs do a lot of weird shit that the IETF would find questionable.

Usually the modem communication that is paired to the other side, which you normally can't change out.

But if we assumed that they ran it via ethernet or fiber and give you just that to work with, then you are still at the mercy of how they have it physically hook up and routed on the other side.

If someone hasn't paid for service, it may not be plugged in at the street box(where they would need a tech to go plug it in), or they may be blocking traffic for whatever port that the line is plugged into.

If we make it a smaller scale, and we think about a building with tenants, and one doesn't pay, then I am disabling the port on the switch/router that is connected to their physical line. At that point, it doesn't matter what hardware they plug into their side, they won't get anything.

Another thing is the pool size of the DHCP.
Most of the time, it will only allow 1 IP on the network. This confuses people a lot if they go to switch out their routers, and the new one isn't getting DHCP. Its because the old one still has the lease.

I say most of the time, because im sitting here with 2 IPs

Now it seems obvious, can’t believe I didn’t think of that 🤦🏽‍♂️😂

Is anyone have good experience in Client-Side Manipulation or Frontend Debugging. ? I am in need of ur help

You are better off asking the question instead

Do you download nmap through Kali Linux or your own OS?

web game challenge. The final boss feels intentionally hard, and I believe the solution involves understanding and modifying the client-side source code (frontend logic).

I’m trying to learn how and where to change the code safely so I can defeat the final boss and get the flag. If anyone can explain the approach or teach me how to analyze this kind of client-side logic, I’d really appreciate it

what?

right click > inspect or F12 to bring up browser console

We don't assist with CTF, as they are suppose to show your ability to find the answer.

Unless you mean game hacking. If so, please refer to #📜・rules #6

yes i understand but i cant really get like high damage or speed or health , i only got to change the names

Mb twin

ahh its not allowed ?

in a CTF context, no — modifying the client-side code is not considered “hacking” in the unethical or illegal sense, as long as you stay within the rules of the challenge. this what it said for this reffernce i wanted some aide

In a CTF context, if you don't understand what is going on, back up and go back to basics/fundamentals.

Or start with HTB

I need some help. Is there any ip changer when running Linux?

yes i wanna learn it from basics , as i found only about changing text , but incase of a game to change its health or damage , i couldnt find after days of searching .

So it doesn't sound like you signed up for an official Capture The Flag.
It sounds like you are just trying to hack a game.

In what context

i am signed in as a team in passetonhack fr

i can show proof if needed.

Again, if it really is a CTF, then it is possibly too difficult, and there are things you should learn about first before it will actually make sense.

A CTF isn't for a beginner learning, its for someone who has started to understand some knowledge to be able to practice what they already understand.

Us doing the CTF for you is pointless, because it won't teach you anything about the CTF. Just how to "get more HP in a game".

We do not help people complete CTFs here.

If I would like to test on to something that I am not able to trace the ip using ip tracer

I am trying to get into my other laptop but I can still trace my ip address

yes indeed its a diffcult level this one , i have found 9 FLAGS in total , so this is something which bothering me for days . so i wanted help to learn or some to guide or teach. I know some can find it , but it will be pointless if i didnt learn it

I got parrot OS on a thumbdrive, whats the best laptop option for it? Also i know its debian based, could i be alright playing basic games on it like schedule 1 or terraria or is that stupid

whatever laptop you have lying around will be fine, as long as it's got decent linux support.

and nothing wrong with gaming on a debian flavor; find the right steam compatibility layers and you can play practically anything that the hardware supports

Bet okay

anyone trying to teach me about ports or kali linux im new LOL if so i would be happy dm

Are you trying to stop yourself from being traced?

Are you trying to not be traced within a network?

if you have questions about them you can ask them here

thanks!

I want Comptia Security+ ppts, can anyone provide

Hey, I competed Pre-Security, Cybersecurity 101, Half Jr Penetration Tester on Tryhackme. Can someone guide me? Like What to do next? Or How to move away from beginner phase

i have a pc and i am very new to all this, but i love making music and been look for fl studio and cant find it... any help

I have questions for those who work as an ethical hacker or cybersecurity. Is entry lvl is rare? Like you just get into cybersecurity and start working or you need experience in IT (I’m 15 and I have starting to work down the networking and how website works)

I’m worried about future since I heard IT people are mostly unemployed or jobless?

And i don’t wanna be unemployed or a bum.

apt install nmap run this command, it'll install nmap but if you're system isn't debian based i guess you have to get it from the official website

there are great alternatives out there like LMMS (i'm using it currently) and cakewalk by bandlab and some others

Dont worry about it, if you are 15 - do not assume that cybersecurity is going to be an entry level field anyway. People dont "start" there suddenly.

As for the job prospect, its difficult everywhere, but saying they are jobless is just marketing claims from companies that desperately want to sell their AI solution that no one wants to buy

Where should I start from then? If I want a job. I know projects and what have you done is important but they also want experience too.

well, get experience then. Most people work in IT before

how hard is switching from service based to any decent cybersec?

Hello who can help me get pass all the sports cappers pay wall n get there picks ?

read #📜・rules .

So what. When I’m in enough age. Should I start with IT support?

I am not telling you what to do, YMMV, it is entirely up to you. All I'm saying is that cybersecurity is not an entry level field, and people expect yout to be more experienced

As well you should be, to be honest.. all those CTFs and boxes tell you pretty much nothing about real world conditions

For example - quite a lot of pentesters I spoke to have had anything but a straight career path, some had a strong technical background, some less so - some are just well-versed it particular fields like finance or health.. I've spoken to people who worked for over 10 years in IT, and those had an interest in cybersecurity and pentesting, but freely admitted that they still dont know enough to go that route

I understand

I also don’t mind working as IT support first since I care more about living comfortably and simple life. But ethical hacking specifically because I wanna keep my hunger for problem solving and thinking skill alive since it’s all what ethical hacking is about

Also a lot of reading, waiting and frustration 😉

But yeah

I don’t mind because in the end that’s what I like

sure! anything more specific u wanted to learkn?

regarding those topics

How do people usually read .so files (native library) and reverse engineer it?

hey yall just downloaded GOS on my pixel what are the best places to download music from is it worth just using youtube to mp3

Would you rather stream music instead?

hi everyone , am new here i need some help

wait no don't install LMMS it kept crashing on my PC for some reason when i installed pipewire

#👥・new-member-guide

With@thorn plover?

After all this time, they still don't know enough? That scares me a bit

To be fair some admins just do the same thing for 10 years and never touched linux with a 10 foot pole..

Are certifications good for learning and gaining experience? Some people say they're not that useful.

Certifications are mainly for getting past HR

Many courses that offer up a certification afterwards are really good. But whether or not you pay for the exam and pass it, is another story

.

I'm on a website (authorized pt). I can create an object that has an image among its various attributes.
There is unrestricted file upload. I can upload whatever I want as long as I have the right magic bytes at the beginning of the file.
If I upload an .html file with xss, then right-click and open the file, the .html file opens on the website, and of course the xss triggers.
But I'd like to trigger XSS immediately when it tries to render the image.
I don't have control over the filename or the path, only the format.
It loads in a simple <img src>. No onerror.
What would you do?

Delete my computer

Hey friends I'm currently doing bs cyber security and I'm In my third semester.I was hoping to get some guidance.Was hoping I could focus on as much ethical hacking as possible and gain some skills

I need some help with my insta acc guys🥀🥀🥀

contact insta support, that is all we are going to tell you #📜・rules

It doesn't work😕. Like i cant reset my password no matter how much i try

I love that account 😭😭😭

I dont wanna lose itt

Contact instagram support about it

How do i do that? 🤡

You contact support

#📜・certs-and-career
#👥・new-member-guide

Yeaaa truuu

@steady palm scammer alert

Your bio says otherwise

We can't help
It's illegal
Read #📜・rules

Oh okay okay. Im sorrryi should read the rules

Hmm

?

Take comfort that we wouldn't help your arch nemesis, who claims that this is their account they "lost access to", either

Not interesting enough to have arch enemies

Give it time

Hi, ive lost all my msg on insta gram and cant log in

click this #👥・help-me message

We don't work in instagram support

That's a cute dog btw

thank you, his name is Eddie 🙂

Damn Eddie sounds like a great guy

I have 3 pomerians

3! wow! braver than me!

Well I bought 2

ruhroh, i think i know where this is going

I saved the third one
From one family who kept that dog outside only

Even in rain

So as dog lover

Oh oh

I took her

who TF does that

leave out in the rain i mean

im glad you did take her, you saved her!

Yh she is cute
Her name is zara

Fr

I want to start a dog foundation tbh
International one

Like i love dogs

Nice

Thats awesome!

Yup

Cute name!

My dogs name are

Snow
Jackie
Zara

Soo cute, please tell me Snow has a white coat!

Yup she does

hahahaha amazing

All my pomerians are white

ooooof, nightmare in the wet seasons keeping them clean! lol

Fr

Now I don't give them a bath

Cuz of cold

yeah ofcourse, Eddie's white bits go black, so get a cloth out and make him look somewhat presentable..

You know my biggest problem is

Chasing them

😂

Like once I left gate opened
Jackie ran

I was running back

Classic Jackie

Yup

I imagine all good lmao

Well I stay fit cuz of them

Hahaha good point!

Like running
Chaos

You know Jackie is only male
And idk what problem he has with me

Amazing - I've never walked more in my life than since owning a doglet

Like he will ignore the garden

And pee in my room

Ahhhh, maybe a teritory kind of thing maybe?

I once left the backdoor opened

Like atleast he will go out

But nah

Seriously

My room only

He ripped my hoodie into pieces

avoid the outside and pee in owners room, mission easier

RIP hoodie

I'm starting to think he actually has an issue with you lmao

He probably does

Like tf is this

I lost my shoes

I lost my hoodie

I lost my laptop charger

you tried losing his things?

tit for tat as they say

No
I feed him

I give him water

Pick his shit

He's the owner now, sorry to say

Check the dm

Snow and zara are females
Now I give each of them each bone equally
But Jackie
Gives his bone to snow or zara

Wow, Jackie is very complex

He is flirting tbh
According to me

I have one benefit of jackie
I take that mf to walk
Girls come calling him cute

And girls give me their insta

Hello everyone, please help me with the next book to help me make malware from beginner level

Anyone know how I can make a vpn to my network if I suffer of cgnat curse? For the life of me I cant get my isp to give me a static v4 but I need to access my homelab from other networks.

Sounds like there on benefit from his chaos

try with duckdns and wireguard

ill have to see if my router has dyndns support, thanks for the suggestion