not just "what I do myself"

In the end it's everybodies decision which host OS they use

yh but yall recommend linux on dualboot or bare metal to beginners for no reason 🤣

I actrively discourage dual boot

well ive seen it enough

sure, or thinkpad as eris recommended, they can be upgraded if you know a bit about hardware

or a Framework Laptop

if you really like getting deep into hardware upgrades

Would not be my recommendation - but I guess we laid our cases out.. either listen to the person who first asked for budget, and use case, hard requirements.. or that one guy who shouted "gaming laptop!"

i just run a gaming laptop because i can play my games on it, run VMs with ease, reverse large binaries with ease, and never worry about it being slow

ur too corporate like

ur asking questions an IT technician would ask while hes at work lol

have not heard that one before

or.. questions a person would ask who gets that question regularly on a linux distro forum ^^

dude has a 2k budget and wants to know what specs he needs for hacking

literally ANY computer for a 2k budget will do EVERYTHING you need

perhaps he should have done his own research first then LOL

anywas its not my point

yh u dont need some supercomputer to do or learn hacking man

half of the biggest corporate hacks this past year was done by social engineering on the phone and then breaching a employee account, then compromising the cloud from there

True.. with my recommendation Pebb still retains future options.. both what OS they want to use, or whether their hardware requirements turn out to be higher.. cause let me tell you.. I didnt know that when I dive deeper into forensic, I would really value my laptop with 3 internal hard drive slots

basically just using a web browser

there is zero "hacking tool" that will require you to have like 64GB ram, a 5090, i9 CPU, etc, it just doesnt exist

though password crackers like hashcat will obviously benefit from higher spec'd PCs and the presence of a GPU

yes

sometimes

usually its a selected option if ur building one on a PC/Laptop configurator

but if you buy one from amazon or whatever, they will usually say in the title (NO OS) or (Windows 11 Home Preinstalled) whatever tf

you'll know after reading the advert

that was my laptop
350ish

then I upgraded a bit

for Packet tracer users, how can i set trunk mode on a switch without the connection to my isolated router with server and WLC connected to it without it being disconnected from the rest of the network?

kali linux

I have around 10 laptops with various operating systems.. kali linux among them

thats just unnecessary lmfao

must be nice to have cash

people have various use cases

most of them were bought over time, refurbished, really not that expensive

Nice

I do quite a lot of workshops, or need dedicated devices during presentations

as i said.. professional use

Situations, maybe, where your RGB illuminated gaming laptop would look out of place 😉

i use my rgb illuminated gaming laptop for presentations

i get given stickers after them because people say i need to put stickers on my laptop

formality is boring, anyone who takes it too seriously shouldnt come to my presentations, and miss out on a high quality talk

also ur still talking here after like 12 minutes of nobody saying anything

let it go

I have laptops with sticker, for stuff I do at my local hackspace, or during chaos events, sure.. but sometimes I need a dedicated "victim" machine that I either wipe the next day, or maybe I do the same presentation 3 times on a day and just pick up replacements laptops for each of them.
But for the majority of my clients I would not appear with a gaming rig

As I said.. ymmv

meh, boring

may sound boring to you, but my focus is on healthcare organisations.. and if I talk to the upper brass there, they still wear tie and shirt. Lets just be happy that among us we probably cover the potential spectrum of organisations

Hello

hello, chat's in here #💬・old-gen-chat

Please I need help with getting into cybersecurity... I have learnt background knowledge with thm... I need guidance

we usually recommend #👥・new-member-guide #📜・certs-and-career and/or #💕・free-resources

depending on where you stand currently

Is there somewhere that has generalized information on the different x86 ABIs and what sort of instruction patterns are used to call functions in each, but isn't a redteaming shellcode guide or a super technical reference/manual? Something that doesn't assume a bunch of pre-existing knowledge about the specific instructions but general enough to be used along the lines of function detouring for executable modding or debugging thereof

asking regarding x86_32 because if not I will probably write it
and x86_64 because 1 trial by fire was enough for me

How would I know who to message if I had a job for someone and how would I message them about it. Im new here

The x86 disassembly wikibook is probably the closest thing, it explains calling conventions and common patterns without being a hardcore reference
honestly theres not a great middle ground resource so writing one would probably be useful yhyh

Probably not on this server, honestly. If you want to ask someone specific, then ask if you can DM them

How would I know who to ask?

If you don't have a specific person in mind, then this is most likely not the right server to look for someone. Several other infosec servers have sections about job listings though

Is there specific server you know with job listings or services

Yeah thats what I need bro

It would kinda depend on what kind of job. Typically the ones that offer job-relevant certifications

It also depends on the 'job' you are talking about.

If it's a full time position, or contract work, then maybe people want to hear about it. If you want to offer someone $300 to hack into someone's Instagram, then you might be sorely disappointed in the responses you get.

this definitely still helped a ton with a question I hadn't even thought to ask lol, big thanks

sounds illegal

Am I in the wrong place? 🤦🏻‍♂️😂

have you taken the time to read the #📜・rules ?

very much so

Create the logins legally then?

Not happenin here. Read the #📜・rules please, as you have been asked to do.

Happy to help fam

Hi anyone here?

dont ask for someone, ask for something

Hi

Yeah of course

Can you give one out 😊?

Yes sometimes

@delicate oyster now dont make this weird, but.. I am commited not to be your friend, so please no friend requests

Alr I'm cool mate 😊

You really sure you up for it ?

You have Kali already installed?

Guys I have query
Please someone who can answer me

Pls reply to my mssg

Just ask you question

Please is there a server I can learn hacking from scratch I really need to learn

this server seems fine for that - start here #👥・new-member-guide

The thing is since past 2 weeks or so
I don’t know how
But
How do I explain
(This was the start of it)
My brother plays Roblox using my mail and later I get a message saying my Roblox account gets accessed somewhere in Russia

After this it’s my epic games account
It’s getting accessed somewhere from Mexico

After this it’s my Ubisoft account it’s getting accessed
From somewhere of Australia
Idk why it’s like this

When I check passwords in my iPhone it
Says my password or mail has been compromised in an data leak

The wrong thing is most of the passwords I use is almost similar 🥲😓

you have a full schedule ahead of you here, buddy

So I changed all the abv passwords and used 2 factor auth

Huh?

cause you now have to contact each and every separate support service from each of those services

Oh my god

most likely devices that held those credentials got compromised, so it might be a good idea to reset/reinstall those

that is why we use password managers and two-factor-authentification

And one more thing
I don’t even use Crunchyroll like I never installed it neither I logged in before but I get a mssg saying some login has happened in Mexico

well if you have had an account there, thenyou are a user

How do I do that
But what I did
Was reset my passwords to new ones and enabled 2 fac auth

so you can still log in?

I don’t remember having

In which

if you can still log in, changed the credentials, make sure to end any currently logged in session - those support services may come in handy there

dude YOU said you changed your password and enabled 2FA, how should I know where

I did that in
Epic games
Roblox
Ubisoft
Instagram also

typically those are symptoms from some malware.. key generator, mods, cracked games.. and they steal session tokens and credentials

most likely discord, too

I never installed any crack or so
But I did once long back
Like around a month or two but deleted it

this is the origin story of accounts, that get banned on discord 1-2 months later because they spammed some crypto scam

Oh damn

oh yeah, people out there wait a while before they burn those compromised accounts

so as I said.. full day ahead of you, make sure your brother isn't using those accounts anymore.. and go to all the support pages

Ok will do

I personally would also reset/reinstall all the devices

How should I reinstall a device?

download the installation file, flash it onto an usb stick, and reinstall whatever operating system you want to have.. windows, linux, macOS, dunno what you have or want to have

See thing is as u told I checked those log in places and I logged out of those and some services say when u change the pass
All login session will be logged out

That is something the support services will advice you upon. They cant do anything though if any of your devices is still compromised

up to you if you want to risk not doing it, and see if you got away this time

How do I know
If my device is compromised even now
Or my mail for that matter

Just saying that "I personally" would do it

typically by running malware scanner, which might or might not be compromised already.

You really dont know for sure that you are NOT compromised.. you can download some malware scanners like malwarebyte antimalware and let them run a deep check

if they come up with nothing.. you "may" not be compromised.. if the problem persists, then that is an indicator of compromise.. might be a different device though

Hello
Hope ya all are doing well.
Just wanted to ask like do you know any online side hustle or anything online through which I can make actual money? Let's say minimum 25€ in two to four days?

really not the server for such questions

Yup yup I know sorry

Just wanted an expert idea

If such thing is even possible

Let me just say that a lot of people ask the same thing here, and no one ever found anything here.. the consensus is "you should look elsewhere, possibly outside of discord"

not even the regular scammers seem to bother to write

Hi

Hehe fair enough
Btw is their a way to hack a router
Let's say I wanna configure my router settings
But I got no app for it or anything
The closest thing I found was entering the routers administrator name and password
But I don't know that, then how do I access it?

if you dont know them, then this is likely not your device, and thus illegal

Ok thank you

It is mine
But it's like installed through the WiFi company and they arent cooperating

so its a leasing device

part of a monthly contract

See here's the thing, the company gave me two routers, one router belongs to the company and if I ever cancel the subscription they are gonna come and take away their router. And then they have given me an extra router when I asked them to because the old router had slower Internet speed and to maximize it I bought a router from the company itself and that is not on a lease
It is completely mine

if you bought it, then you should either be able to reset it to factory settings with a default password - or they have configured it and should be able to give you the password

either way.. this is upon your service provider, not some random internet people to help you to get potentially into devices that are not your own

Yeah I thought about reset but the only thing I was worried about is will it work after the reset

Cant tell you that - it depends. First thing I would check is whether there is either a default password to the device, or one printed on the bottom

Yeah tried those too
Doesn't work
Aight g thanks for your info
Imma just drop it

Do you know what the router uses wpa2 etc?

No one and we won't help with that here.Read the #📜・rules please@vernal gazelle

Am trying to learn how to use Kali Linux to manage and access my school wifi password. How can I do it?

Guys is google cybersec cert good as a beginner?

If you are asking questions like that, I always say expanding your skills in the most interesting direction you can see is where you need to go. Too many beginners get caught up in the "best" thing to do next. The best thing is not getting burnt out forcing yourself to prioritize something because the internet said so. Stay learning instead

If you really need to know what certification will be good for a resume for you, I would try to network with people who work where you want to work and find out what certifications they care about. CompSci is too wide for a general answer imo

leave your school wifi be

Dont, leave your schools wifi alone

Listen.. this whole wifi hacking thing may be something you just discovered for yourself.. but the world has known about it for a long time. Those videos are staged, almost none of it works in the real world.. its not like everyone just didn't think about it for the past 30 years..

That being said.. it would be illegal and get you in a lot of trouble

hello all can anyone guide me how to began with cyber security i know how to code but not have idea about this field and where to began with i am going to start my collage this year

Hey man.Start here #👥・new-member-guide .This channel will get you going.

Oh I see thanks

Do we have to pay for somthing we learn here? like anything even logining to your own google account.

there are several resources, some of them have free portions and paid portions

Typically it is not the material that is paid for, is the curation and ease of access. So if people look for handholding during their learning process, that is usually not for free

No you dont.But the institutions we refer you to will charge you.

🫤

Charge how much

It is, what it is.. you want someone to do work for you, they expect payment

but as I said .. the base documentation and info is pretty much freely available

I need help

Serious help

But if you want someone to host vulnerable machines for you, give you feedback on your progress, and keep learning paths up to date.. well

Willing to meet in person about it too just want to talk

Please, i need help

if you need help, ask

We heard it dude, what do you need

I need a second chance

I get it now

?

Everything I learned in the streets was a lie

It wasnt real

?

I want a second chance

If you just want to chat, there is #💬・old-gen-chat for that.

this is the tech channel

My bad.

and even if you were to ask for help here.. just spit it out

Yooo chat. I just created an ai assisted ids system which can monitor network traffic and generate alert if suspicion found. But i am not able to figure out prevention for it.

Hey guys, I’m new and i want help with my email

https://dontasktoask.com/

So yeah , There is someone spamming my email. I’ve already blocked him, but the messages still haven’t stopped.

Where are these docs available?

The internet, strewn across multiple websites, multiple projects, multiple blogs

getting all of this together and keeping it easily consumable and curated.. that is the paid part

Is there anything i can do ?

how specifically did you block them

nmap for exampple is an open source tool, its documentation is freely available, covered in numerous articles, but if you still need someone to show to you how to use it.. well

Well actually i muted him as I didn’t find the block option but im really pissed rn 🥲

email does not have a "mute" function.. that is why I asked how specifically

Wasup guys this is my first time in here

I need to start learning about ethical hacking

#👥・new-member-guide

Where should I start

There is mute option available when you select the mail and click on the right 3 dots it kinda stop notifications

that is not an email function.. that is whatever tool or service you are using

We cant see your screen and can't read your mind.. you have to tell us the specifics

I have a SS how can i show you ? I can’t explain what you are saying

You cant, need a way higher rank to post pictures

just use your words.. what email client or website are you using here

Just tell me the way or a tool i can use to stop him or maybe scare him to stop i have found his information on intel base but didn’t get the live location

this will turn out with you using gmail and not realizing that this is a service, isnt it

Yeah

https://www.google.com/search?q=gmail+how+to+block+email&oq=gmail+how+to+block there you go..

assisted googling is probably enough here

hey just a question on which level is that

25

or it used to be 25.. hold on

thanks

let me know when you find it

find what?

you said the level changed and you were gonna check

Oh, alright - hold on

yeah

thank you

#🤝・roles-info message

lvl 50 now

they done nerfed it :heart

💔

well it certainly made the chat easier to follow

Seems like a scam

lol

pinky promise?

It actually looks like one 💔

wouldn't dream of engaging some weirdo who tries to ping 160.000 people with this nonsense

Good afternoon everyone

I'm new to hacking, and so I have a few questions
Please I'd love it if you can enlighten me 🙇🏽‍♂️

As a beginner in hacking, how much of programming do I need to know, and what are the basic programming language I should start with

details pls

he got clipped

Python for scripting

JavaScript too

But I’d start with python

I think it largely depends what flavor of cyber you’re pursuing

what librabry and how do we learn python specially for hacking

and where can we learn networking and os in depth for this

Any experienced bug hunter here ? I need assistance

“where crumbs lie, bugs follow” -R9X3M March 12, 2026

sorry

i literally wrote a paragraph but this guy

holy fuck

I would crash out

get that extension where it shows messages that get deleted

There's really no "python, but only for hacking"

can u telll the name please

👉 👈

and networking and os

thanku

elobrate

Thank you so much

@steady palm

@kind zealot @somber orbit @simple ledge
Check out the #📜・rules
No things that break Discord or Game ToS

Thank you so much

Whats up?

how did u know it was for u

I got it

Please stop doing this.My status is on do not disturb for a reason.

i didn't notice

Check next time

🫡

What specific questions do you have about bug hunting? Theres a few people here, but it is easier if you ask the question instead of asking for a person.

I saw your previous message

got it got it

Can you help me ?

depends if i know

You want to speak to the darknet manager?

The FBI is coming and knocking on your door soon.

well the shop next to my house sells literally everything i can give u his address u can come and shop

i got ubuntu like a hour ago im trying to install discord and it keeps on saying update failed how do i fix this??

I stay a very far place not in America

easy if u installed first uninstall sudo apt remove discord
sudo snap install discord
i dont know the actual issue but this should fix it if not then we will see

type that in terminal

im using the app centre

Hey, I am working on an assignment and my task in it is to exploit a vulnerable c program vulnerability being a buffer overflow, am almost done but I am facing an issue, when i use my payload on it it runs successfully but It dont launch a shell it exits before I actually launch the shell, Idk if someone would be able to help me with this issue and if u want more context lmk

Please can i get someone who can put me on how or where i can get into coding,i'm a beginner tho

Oh my bad

Forgot that app was against TOS

If the payload runs but the program exits it might be because the shellcode returns and the process terminates

Also check stack alignment, NX or if the shell spawns but closes instantly

More context would help

Okay its a 64 bit program when i run it in gdb i get this
1094795585
process 106295 is executing new program: /usr/bin/dash
[Thread debugging using libthread_db enabled]
Using host libthread_db library "/usr/lib/x86_64-linux-gnu/libthread_db.so.1".
[Inferior 1 (process 106295) exited normally]
if i type run # or run $() after excuting the payload it does start a shell and it works fine i just figured that out
at this point i believe my shell code might be the problem that it is exiting but my issue is i am no expert, we learned nothing about this due to "legal and ethical issues" but it is still a part of our course work and i have been scouring the internet for the past week to get to this point so idk if i should keep it as it is or try and find a way to get a better shell code in my payload

I see now, if GDB shows it executing /usr/bin/dash then your shellcode is probably working, the program exiting usually just means the spawned shell isn’t staying attached to your input/output yk

Since run # or run $() keeps it interactive your payload might just need a proper TTY/stdio setup rather than different shellcode

I can't share photoes here i just realised, so i did search for tty and how to do it earlier today but that was another roadblock, again we never learned about any of this and were thrown in the deep end so if you could help if you have any good source on how to do a setup for tty that would be great, i am still not sure what tty is even after the research ive done today

sre, a tty is basically the terminal interface that lets a shell interact with input/output, If a shell spawns without a proper tty it can exit immediately or behave weirdly

you could also look up “interactive shell vs non-interactive shell” and “pty/tty basics in linux”

Also check some writeups

one last question that might sound silly, would the tty be a part of the payload?

idk if my questions make sense

nah not a silly question at all, usually the tty isnt part of the payload itself
the payload just spawns the shell and the tty/pty handling is more about how the shell connects to your terminal yk

dw they do, this stuff is confusing at first

Been thinking, for android pentesting..android studio just abuses RAM? Is genymotion the next best option? Open to hear any

it is mate and i cant lie, what you just told me is probably worth more than everything i learned in the module, thanks for the help, hopefully ill be able to sort it out now

no problem at all, glad it helped fam

Im good , wbt u?

The thing is , chatting in private is easy ….. still if u want to then okay … I recently started bug hunting , I know networking fundamentals and I am not finding any good resources out there …. Tried port swigger labs and completed access control labs …. But when I went to find bugs on real targets on hackerone …. It was a mess man 😭🤌🏻

So I need someone experienced to tell me what roadmap or structure should I follow to become experienced in bug hunting ….. i am curious to learn …. Recon is not my type cause I can’t scroll through endless ip pools and subdomains manually … breaking things if my thing , I know how to use burp …. So I want assistance

hello fam, new here just checking this out.

Ay gang, welcome in got any issues!?

Not at the moment, was just pointed this direction and wanted to check it out. I am studying for my A+ core 2 cert

What do you guys do here?

Check #👥・info

Hiii guys i'm pretty bad for cybersecurity buuut i know networking i did some mini project with first packet tracer and now i'm using GNS3 i did a lot of stuff like static and dynamique routing ZPF and ACL, I used pfsense a little bit to set up rules and a captive portal but idk i realy like networking but i'm dumb like if you don't tell me to do something i can't do it by myself Sometimes I do things that make no sense because I don't follow the strict rules that have been imposed on me, Does anyone know of a way to develop my imagination for this kind of thing? In a fun way, because I'm a bit lazy, but at the same time I'd like to learn more about cybersecurity to

Ow damn this is lonnng asf m'y bad

Yeah m'y english is pretty bad to i hop you can understand

When i have an exam who just say (yeah do this do that) 20/20 easy but when i have to choose what is the best way to make it work yeah 10/20

a fun way to build imagination is doing ctfs, labs on thm and htb or even making your own mini networks and breaking them

Wich one is free trial friendly ? I can pay but if i can lear as much as i can for free

copy that, good looking b

Building m'y own network can be really fun tho i don't have any equipment but i can use a vm for m'y firewall and i just need to find an switch and maybe a router

THM has a solid free tier with tons of beginnerfriendly labs

I'll try this !

Where is the best to build a PenTest’s Report?

I need help with dump and pin

Create a local AI with no logging to do that for you automatically

he’s gone but I mean

you can make your job more efficient

And safe

but I guess he was trying to learn so that’s not the best idea my bad

don’t listen to me Anthropic hijacked my brain for a second

in my opinion you should try to automate all this stuff

do things that make your life easier and actually work

That’s how you adapt to not finding your job miserable all the time

I feel sad ik this is not really for therapy but hopefully someone to talk to i dont want any trolls but like there is this girl I was talking to i messed up and I feel the weight on my chest im scared to say sorry and shes talking way lesser than she used to be im a fuck up but also im trying to pass a assignment but the Ai im using is being stupid I fucking hate the fact that chatgpt or grok or Claude aint working they always make me mad and always make me want to punch a hole in my house I feel empty I know why but its like I dont know why either it just pissing me off im super mad at the time and im stressed I want to pass my quarter with out punching a hole in my house or making my fists bleed

not the best at this but i would try to apologize

i think it’ll help everything feel better

tell her how you feel and try to explain it was a mistake

Hey im going into cybersec, what are the important things i should focus on learning, i want others opinions

theres alot of areas, is there anything in specific?

I was looking at cybersec architect

Not planning to go redteam

hang on

so, you’ll want to learn about Networking and malware, as well as a bunch of other things like coding and Virtual machines. there’s a lot of guides on #👥・new-member-guide i believe, i’m still new and i don’t specialize this area, and i hope someone could be of better help

What books should I invest in for cybersecurity engineering?

There are a few.When you chat and level up a bit, you can check out #💬・books-and-reading .

Thank you

I need help .. when updating Python what should I not do

@steady palm Do you have any advice for a call about your background with an employer?

Yeah, would you like to ask here, or drop me a dm?

I'll drop you a dm

Hello, if an experienced individual were to host a CTF game for a college project made with python from scratch. How would you go about to achieve that?

I cant im too scared I just hate myself I dont want to victimize myself I feel like im at fault like I should feel ridiculed forever

I just hate myself

Have you written your own software, and tried to exploit it?
If not, then it might be difficult to understand what it is you are looking for. Labs and stuff are great for getting practice and an understanding of the tools and mechanics, but if you don't understand how the programmers themselves come across those bugs in the real world, then it will be more difficult to find.

Look through open source software that have had recentish CVEs, and what they did to fix their issue. Try to imagine from a programmer's perspective how they came to their previous solution, why it was vulnerable, and how they fixed it.

Then try to make a small proof of concept project that tests that theory out. Find the bug in the software you made. See how it could effect other software, and what the requirements are that lead up to that bug in the software.

The more knowledge you have in how these things could be vulnerable in the first place, the easier it will be to find bugs in the real world.(Easier, not Easy)

Thanks

He left but W advice

Hello I’ve recently completed the basics of python and with everything to learn. I’m feeling stuck. I don’t know what next to do. I wanna build apps, specifically web apps. Can anyone help me with the next steps

learn web developmet

anyone working with splunk ( enterprise ) ?

hi guys

is anyone here

into AI Filmmaking?

Hi guys. I'm looking for help. I am almost completing my bachelors in comp sci (final semester) and I'm looking forward to getting full time in cyber sec. I have acquired a solid foundation in networking and programming I'm thinking this will be a headstart for me into cyber sec and I need direction on the next steps to take to move faster and so I don't waste time on things I already know and things that won't actually be of help.

I'll be really grateful if someone can help me out.

Have an ip address to share These peple doing some bad shit. 173 189 134 143

Great, I will suggest getting comfortable with Linux and terminal and yeah checkout #👥・new-member-guide

Hi chat, does anyone know any alternative apps for autocad which can be used in linux also? can sketch blueprints, and mindmaps stuff

I think I have knowledge on that as well. I've been using Ubuntu for about 1 and a half years now.

hey @shrewd sail

1. for future use #👥・help-me (so general is less spam)
2. there are virtual box ready kali images, (https://www.kali.org/docs/virtualization/install-virtualbox-guest-vm/)
3. that is the fun part about virtual machines! you can break them and it """doesn't really matter"""

https://tenor.com/view/am-ia-joke-to-you-laugh-stock-joker-i-kid-you-not-owl-gif-16641981

sry

what about dualbooting on bare metal

Dual booting technically works BUT it’s riskier while you’re learning. If you mess up configs, partitions, or the bootloader on "bare metal", you can break your actual system and fixing it can be a pain... (i mean yea you will learn a lot but ... trust me not worth it in the beginning)

With a VM like VirtualBox everything is isolated. If you break something, get malware, or misconfigure things, you can just reset or restore the VM and your main system stays safe.

i actually used it before evn triple booting i braked things and fixed them but now am getting into it searously and if a hacker or maware gets into that os am worried could it get into the other two os

not really how it works. if you dual or triple boot, only the OS you booted into is actually running, so it can’t just jump into the others while they’re off

the bigger thing is that the running OS can still "see" the same disks/partitions. so if something had enough permissions it could mess with files on other partitions (if they’re accessible)
but it’s not like it automatically spreads into the other installed OSes.

that’s also why a lot of people just run kali in a VM when they’re learning. it’s more isolated and if something breaks or gets infected you can just reset the VM. 👍

thank you so i have to just not give kali the access of other partitions instead of VMware cuz my laptop is potato

you are welcome :)

now i can mess up kali😈 and to keep my grub safe i make my other os deafult

yeah but there is more than os in #👥・new-member-guide

helloo
i want to set up vulnhub machines & i want them to be isolated from the network
and i have tried to follow tutorials for that but they're all using windows as a host machine & i cant find any reliable ones for kali as the host :(
it all goes well until the dhcp set up part (im using internal networks btw)
so if anyone knows how to set up the dhcp please help :,) & thank u in advance

pretty sure the lab guide on the vulnhub website does not require that you use windows - those are all hypervisor settings anway, it doesnt matter which host OS you use

what exactly are you trying to test with it?

Its not about tagging everything as illegal, its just that tools like that are commonly used for malware

Nothing personal

thats true yea, a lot of tools are neutral by themselves

but the reason people are cautious is because some tools are primarily associated with malware activity

Can someone help me in getting some knowledge about how to nuke a discord srvr there's one indian server which I joined unknowingly and the guys over there they all literally insulated me and were very rascist towards me

If someone shows up, freshly registered account, asking about stuff that is either illegal or adjacent.. then experience shows that it will be, in almost all cases, nefarious intent. Nothing against you, just playing the odds here

read the #📜・rules converning vigilantism and illegal activities

obviously not #📜・rules

Breaking bootloader is the most common lowk and that wont hurt ur system only thing u gotta watch out for is partitions

Just installing an OS on a VM isn’t gonna teach u anything imo

I argue it’s better for beginners to actually install it on their pc dual boot and all to learn then when they’re like good at it and don’t need to go through all of that again they can use a VM

I would suggest the use of an empty hard drive with windows and whatever OS you're trying.

Pro tip NVIDIA graphics + Kali do NOT go together

ymmv

Yea but an unbootable system still means fixing partitions or reinstalling stuff.

That’s extra problems that have (in my opinion) nothing to do with learning cybersecurity. If the goal is security practice, a VM lets you break things safely and reset instantly.

but i get your point

Dual boot should be avoided at all cost.. the only time I recommend it, is if your hardware just isn't able to handle even a single VM

yall, im having a DHCP problem on packet tracer, i connected some PC's to a router which is connected to a switch, yet i have another system thats the same setup and its working but this one isnt. both systems have Access for the connection to the switch, anyone know whats up?

are both systems working the same network?

yes theyre connected to a main server area

If they manage the same network.. well then one of them will assign IPs and the other one won't.. isnt that what you would want and expect?

hang on

But when something breaks, and you have to actually get in there, look at logs, services, search up error codes, the whole 9 yards of troubleshooting all of that is valuable experience. And it’s all completely related to cybersecurity. If the goal is learning Linux, which is a fundamental tool for cyber you will use a LOT, there is no better way to learn then breaking the OS and fixing it back up again either intentionally or unintentionally.

Even if the goal is to practice malware and exploits, you can’t practice on Linux if you don’t know Linux you know? It’s like a prerequisite of using the tool, to get familiar with it

sorry for the ramble, don’t mean to argue I just really think suffering through it is the best way to learn

let me send you the screenshot of the topology

good luck

no image permissions here

yeah

thats the network plan

yes correct

the circled area is where i’m having problems

ok took a pause on that

trying to set up Virtualizatiln to use VMware

Hello guys 👋
I am doing one vanet simulation project to study the metrices value of AODV,DSDV,OLSR and DSR......using ns3 and sumo.....but I am facing an issue for dsr every time when I change the number of nodes, bandwidth or data packets size value....all the metrices value of dsr is zero
Need help with that

Hello guys

Can somebody teach me technical hacking

#👥・new-member-guide

I want to go team red

follow the guide step by step, it is self paced

If DSR metrics are all zero, it probably means routes aren’t being established

check that DSR is enabled, nodes are in range and traffic starts after routing

Yoo what benefits do i get when boosting this server.

Hello can some teach me hacking

Check out #👥・new-member-guide

i dont no why i can get pass task 3

What

abt find hidden page

yooooooo

i want to kill the penguin, what is the funny command?

??

linux

whats the command to kill the system

is the system not work or safe

its VM

i just wanted to finally do it

so i could see it in action

okay

so

what is it?

sudo poweroff or sudo shutdown now 💔

they changed it?????????

or rm -rf /

how

ok

bc i kept adding sudp

sudo

and it didnt work

🤷‍♂️

I'm new around here, I saw that the server itself suggests studying certain websites, should I do what they say or should I do something else?

Yea I would recommend hack the box and also hackthis site

I have written I script but it only works if the device is on the same network. Anyone know how to reach the device if it’s not on the same network

@neat ravine i am not the smartest guy, but i think you can see that on "nmap"

Huh

sorry, I thought your question was different; my English isn't the best.😭

Nah your all good

thanks, but you need to do a remote acess right?

Not quite I need to be able to send somone traffic who isn’t on the same network as me

Do you know which network he's on?

Yea the script works by me putting my ip into it and then them running it but I have tested it and it works but only if we are on the same network

Because if cause ips are from your network

hhuumm, a problem of ports denied?

Nah like way more basic then that basically do you know how a reverse shell works it’s a bit like that but I’m aware they use a vps to connect im wondering if I can without

It’s not a bad reverse shell tho don’t worry

everything that is learned is merely informative

right?? ahahahahahaha

Yea genuinely aswell literally just a troll thing

👍

i hope you can solve the problem

Hello I am new here and I am wondering the way of getting new knowledge on this app in cyber security part

Hi new commers. Have a look at our #📰・news-channel . This channel will get you started.

Hello what do you think about the new MacBook Neo and in general about using MacOS for Cyberspace?

I'd rather have a thinkpad

Why may I ask ?

Linux support, upgradability, no arm architecture.. several suites/tools don't come with arm release candidates.. and I don't have to fricking learn a new keyboard and shortcuts that are different than the rest of the civilized world

Also ports..

Thats make sense

Thx

Hi

Anyone know how to make there own mobile os

Just asking

You should always just ask the real question you want to ask.. not whether there is someone who could be asked

https://dontasktoask.com/

hi im trying to solve a challenge basically in the challenge you have to bypass a chrome bots cp policy via a injection
you can upload files on the site which the bot reads but its csp policy wont let it execute js or anything and ive been trying to get past it
i have the source code and you canget the flag by like grepping it but for me to learn i gotta treat it like its
remote to learn anything lol
i did find a awya to do via a leak but i gotta find a working method in under 15 minutes

https://wetransfer.com/downloads/bd5e1e389dd8fe91c9d494e4accd33a120260313205012/fdf47c936bae017baa7536db1d58626420260313205041/8eddca

heres a link to the source code

if anyone can help me that would be so great

Am I able to switch my hat to grey? I like the idea more.

If you already have the source it might help to look closely at how the CSP is defined and what sinks the bot actually processes

sometimes the bypass isn’t running JS directly but abusing something the policy still allowz

ill look and get back to ya

im still stuck

If ya still stuck i’d slow down and look closely at the CSP directives in the source (like ``script-src, img-src, connect-src` etc)

evven if JS is blocked sometimes you can still trigger data exfiltration through allowed resources, also check how the bot loads the uploaded file

ok bet

what happen to hacktricks?

Hello, I’ve been studying cybersecurity at uni but I’m missing a laptop, I’ve been using an old MacBook to get notes in and I have a computer at home. I need some suggestions for a cheap but good laptop I can set vms on. Thank you so much

pretty much any tseries thinkpad

or like a hp victus

Thank you bro 👊🏽

People getting into my house electronics and they are able to talk through something help

I’m new to this server group looking for some direction

question for the CompSci people here, can the pything app run other coding languages? i just remmeebered i had the python app installed and was currious about that

#👥・new-member-guide feel free to ask anyone about experience or if you have a problem, there are lots of people with different expertise levels in a variety of areas ready to help you, if you ask at the right time of course

Ok thanks bro I know some basic stuff Linux tor but basically want to learn about ethical hacking

yeah, as i said before theres tons of people that can help, theyll respond if your on or ask at the right time

Hey everyone! I need help in ctf of n8n to find the flag inside it

Ports open are ssh/ http / 5678

I get id to enter as admin but i don't know how wrok with workflow to get the flag

Hello, i'm new here, i'd like to learn ethical hacking.

start learn networking and OS

Hey guys. I'm in a career predicament. My current career is taking me into a direction where I don't want to go. I want to get into tech, the thing is I have no clear vision on where this could take me and I was thinking if someone here can help me out. I looked into the guide in the discord channel, kinda thinking of doing the purple route, sounds beneficial to have knowledge on protecting and also attacking but career wise I have no idea where to look and how it looks. My main goal right now is to get out of here ASAP and find my first tech job and learn about cyber security meanwhile. The only experience I have with tech is python programming(very minimal, not the best) and soldering stuff together like modding a GameCube or making a clock lol. I'd really appreciate the advice and thank you so much for reading me out.

U want quick job for soc cert
And apply for job
Soc entry level jobs everywhere

#👥・new-member-guide

if ya goal is to get into tech I'd focus first on something entrylevel like IT support, helpdesk or junior sysadmin

Hey guys, i got a question, do i need to know programming or code if i want to get into ethical hacking?

You dont need to be a strong programmer to start but knowing some basic coding helps

hey guys, i could use advice to get pass an admin lock on my company laptop. if possible after the unlock and putting me as the admin on windows i then can start downloading the proper software to hang with everyone.

I cant help with bypassing admin controls on a company laptop

iF you need specific tools the best move is to ask your IT team to install them ykyk

Either it is not yours, then leave it be, or if the company handed it to you, to use, ask them

i confirmed a secret-dependent CSS font oracle and CSS-gated lazy-iframe loading that can branch to /flag?secret=yes/no, but while a bot-side request proves the secret is consumed, i still lack durable readback for the full 32-hex value and likely need to pair the lazy-iframe selector with a multi-marker server-side channel (probably remote Redis allkeys-lru eviction) to recover it what do i do

If the oracle works the problem is probably leak bandwidth

try turning it into a charbychar or prefix oracle and recover the value incrementally by observing the bots requests effects instead of trying to leak the whole secret at once yk fam

the issue witht that is it taked 2 hours

i only got 15 mins to solve it

I see

then

I’d focus on increasing bandwidth, leak multiple characters per request or group characters instead of testing them one by one way better

alrighty

gl fam

can someone please just explain to me why x32dbg doesnt apply all of the patches i do?

Can anyone help me..I’m finally building my first log monitoring lab!..I thought about using splunk but it's paid and then i came to know about wazuh but I’m definitely confused by all the different tools out there.
If you were starting from scratch today to learn the basics, which tool would you pick? (My aim is to become a soc analyst)

i fill a space of memory with NOPs then i patch the file and afterwards it says X out of N patches applied where X is less than N, which should not be the case

patches are only applied in memory, if you don’t use “patch --> pply patches to file” (or save the patched binary) they won’t persist (i think)
make sure you’re patching the correct module//section

yeah i do, i save the patched file which i then open up and not all of the patches are applied

im sure im patching the correct section cause it does apply, the problem is that its not FULLY applying

dat can happen if some patches are in unloaded modules or rebased addresses ykyk, x32dbg only writes patches that map cleanly to the file on disk

so i guess i gotta find places where its the most reliable?

where i can get the max amount of addresses i can reliably patch

Yeah usually its more reliable to patch instructions inside the main modules .text section since those map directly to the file

patching stuff in dynamically loaded modules or relocated memory can be inconsistent when saving th

oh, i guess that might now make sense because i am patching a .00cfg section

it might be dynamically loaded or something

it was a read-only section

alright thanks a lot you cleared up the confusion

Yeah, that explains it read only or dynamically loaded sections like .00cfg often dont map directly to the file

yw fam always glad to help ✌️

Hi can someone help me, i'm doing reverse engineering on CTF and i'm having trouble on dynamic challenges. I know how to read code and doing static challenges, I use Ghidra on it and I usually poke the main function and clicking the functions that are pointing to another in Ghidra. On dynamic I know the basics of gdb but I don't know which one to poke from it, are there any specific methodology like step by step that I should do first when solving it or just straight poking it after analyzing it through the Ghidra?

Hi what is that laptop giveaway thing can any one give detail I have no idea about it I was away for a month

@minor blade hi

Hey i kinda have a specific problem I wanna solve, i basically don't know anything about compsci on even a normal level i can barely code html and I wanted to help a friend out by finding his account passwords especially his socials coz he forgot it and I just wanted to know how either directly get a lotta info about pwds ip add etc thru a free site /or what I should study to get proficient enough to do it myself?

Forget all about that stuff. The only real option is to use the recovery feature that the official website offers.

hey guys

my laptop backlit is not turning off

fully upgraded?

?

Is Your System Fully Upgraded

yeah

latest its yk

every single key is working but the only is backlit not turning off i try to check if my key is broken but its working

hey

is someone free

i neeg BIG HELP

That would require you to ask a question.

This isn't a service center where people are assigned to you.

Ask your question, and if someone feels like it, they may try to help you

Hope this isnt still about your vercel website

Hold down fn button and press the backlit button

does anyone have any tips on learning internet security protocols?

https://www.netacad.com/courses/cybersecurity-essentials?courseLang=en-US

good evening from the PH everyone

I desperately need anyone's help. Is there any way to track the IP add or location of a dummy fb account?

as a simple citizen with no authority rights you cannot track a facebook's location
however police can pull that information

unless the facebook account directly provides you with the location by setting it on

moreover we don't allow services or help when it comes to tracking people whatsoever

I already reported it to the police sir. still no update

well, all that's left to do is sit and wait unfortunately

you can also report the facebook page itself to facebook themselves

we did that too sir

the system here in the PH sucks. if youre just a simple individual the help and justice will take such a long time

And if you show up on a hacking server to ask the question you asked, you are just another number of the many people daily that show up and have sad stories to tell and try to make someone else break the law for them.

And we are not doing it

Although lately more people get DMs afterwards from scammers looking to target the gullible.. so watch out for those

im not asking for you to break the law sir. i was just sincerely asking for help. i dont mean for anyone to get upset

You have to be aware that you are asking people to break the law.. I mean.. what did you think? That the info is freely available to anyone, and so anyone could stalk anyone all the time?

like is there anyway for anyone to help me or teach me how to track sir

Leave it to the police

that is not my intention sir. sorry for the words i chose

Go stalk someone else..

im not a stalker sir. im sorry po

yeah you are

You want to be taught how to check the real world location of someone ... stalker

no im not

You are, you just don't like being called out

and really.. we can drop the subject

The answer is No

im just trying to seek any help sir. thats all.
im a mother of 3 and recently someone threatened me. and now someone made an AI nude of my friend all bcoz i stand for my friend

Missy Dee you can search that in fb just to know im not trying to harm anyone.

Sorry to hear that.. tell it to the police

Apart from that - every single one who shows up her and asks for help to stalk someone tells a sob story.. sometimes its their spouse being unfaithful, or their brother got abducted.. or someone threatening them.. in the end it doesn't matter.

You are not getting any help on this server trying to track someone down. None. Period.

This is not a debate and you dont need to argue. I am simply informing you of the fact

look at the bright side - we are also not helping that one person who might want to stalk you

im not tryint o debate you or anyone. i was just stating facts to what really happened

when you said you cant help at all, did i force you to?

instead i apologized

I said "no one will help you here"

and you kept arguing your point

so if we are both clear about the situation now...

and i said ok

even apologized

The thing is.. I do not believe a single word you say, so an apology is meaningless

but you keep insisting that i am a stalker

i didnt say anything that you gotta believe me

Well you are.. you repeatedly asked with help on how to stalk someone.

You just didn't like the word, and had an explanation why it would be okay.. still a stalker if you want to be taught how to stalk

And we can stop this here, really

hahahahhahah

yeah

i only asked 1 time hahahahha

read it carefully tho

and you said no then i said ok

alright buddy.. you keep this up as long as you need, alright? I'll be gone now

hahahhaha yeah yeah

hey

am soorry to everyonee

it was first time

trying things on a real time website

so got idk bit lost

sorry for pissng yall offf

my baddd

@whole patio sorryy

im sorry also to everyone if I upset anyone. specially @whole patio

not my intention at all

i just saw a video in facebook and leads me here.

ye same

im truly sorry

i found a reel from insta saying owlsec is the most goated cyber sec community

We are really not upset.

Just telling no - same reason, different story for both of you

im not gonna ask my stupid questions

it was my first time

but im really sorry

If it is cyber security you are looking for, then this is the place.

it was just my first time and ive been doin thm for 2-3 months

yeah that would be great.

and when i tried everthing i learned

my first time here

nothign worked out

start here #👥・new-member-guide

so i jus wanted to know how yall doo ittt

thank you very much

i didnt know it wasnt allowed to ask such things

my abd

thm is an artifical environment, almost none of it works in the real world

yee

i think tht realization kinda hit baddd

yeah me too.

so thats why i kept on asking yall how it wokrs and stuff

By knowing what you are doing, mostly

@tribal hawk here

And this is why we keep saying cyber security is not an entry level field.. thm is a beginning, nothing else

now we know it sir

mother of three calling me "sir", eh?

You see why we don't believe sob stories 😉

hahahahaha that's how PH address men

You really wanna keep doing this? Alright then

i mean that is how im used to address people

you dont have to be aggressive

im not asking anyone to believe me. im just explaining

and with that im gonna stop

Its this childish behavior to take someone telling you "no" personally more than anything, really..

You see, we get people like you all the time.. you may thing this is still a charade you have to keep up, but it really isn't

I, personally, blame chatgpt .. young people just forgot how to talk to real humans

huh? my god, what?

young people? hahahahaha thanks

is there a guide for someone who's just starting in linux??

tips fedora

Theres a few ways to get started, depending on what equipment you have available to you.

Can you change your profile picture.
#📜・rules #14

oh wait hold on

is this okay?

That wasn't meant for you, it was for @pseudo saddle

oh

I wanna know what you have available to learn with if you want to get into linux

i wanna try and explore the tools we're currently studying, we're currently studying Cybersecurity Essentials and Network Defense

and if u don't mind do u recommend dual booting?

I don't recommend dual booting for learning how to use an OS.
People will typically get annoyed that something "isn't the same as they are used to", and keep switching back to the OS that they are used to. Since rebooting to switch OSes is such a pain, it never gets learned.

Better ways would be:

• If you have a desktop + laptop(or multiple computers), having linux on one of them with Windows on the other so you always have a "good computer to go back to" if you have issues(or look up the issues to fix them)
• If you have 1 computer, you run a hypervisor to run virtual machines so you can run Linux inside of your Windows.

Dual booting should be the last option, if your computer really can't handle a single VM

And if you are just looking to learn how to use linux, and not look into learning how linux works under the hood, then you are good with kali/debian/mint/whatever you want. They all have the linux kernel, and they all can install packages that are available for linux. Kali obviously makes it easy by having all the packages installed if that is what you prefer.

If you are looking to learn "what is linux, and how does one start from a commandline, and get graphics + apps", then something like an Arch linux would be good, as they have a great wiki + setup guide that helps answer questions about each part of the OS on the way. At the end of that, you will have more practice in things like formatting disks, installing packages, and changing configurations.

ok ok thank u so much guys

i'll be taking this into consideration thank u so much love yall

Here is a link to play around with if you want a link to something specific.
https://www.kali.org/docs/virtualization/install-virtualbox-guest-vm/
Look over the hypervisors like virtualbox/vmware, and see what you want to use. Hyper-v is also an option.

Virtualbox + vmware both have pre-made VMs ready to go, so a lot of people seem to like those on windows.

okay okay thank youuuu

Hello guys 👋
I am doing one vanet simulation project to study the metrices value of AODV,DSDV,OLSR and DSR......using ns3 and sumo.....but I am facing an issue for dsr every time when I change the number of nodes, bandwidth or data packets size value....all the metrices value of dsr is zero
Need help with that

If all dsr metrics are zero it usually means no routes are being established so no packets are bein delivered

@woven hazel but for AODV, DSDV and OLSR.....its working fine.......

if AODV, DSDV and OLSR work but dsr is always zero it likely means dsr isn't establishing routes in your scenario, check your DSR config and make sure traffic starts after route discovery can occur

@woven hazel How do I check for that???

@woven hazel okay let me check once then I'll get back to you with this

kk fam

No #📜・rules

Guys I'm thinking of network/infra simulation guns for my uni
Any possibile topic suggestions

brrrooooo

is it alright if i paste a referal link here for jamie ?? or will i get banned ??

I wouldn't

don't allow different ports from each user to connect, private ports from any user

thnx was just looking to make quick bucks

yoo sorry, does anyone how to get SHEIN gift card or something

I think they sell those

Check it on their website, you can purchase it there

Dont

@woven hazel brorooodasfojds;osd;ojdsf it didnt work

im gonna cry

and does anyknow to by pass the i am not robot ?

depends on what it is most of the time these can't be bypassed

unless the website's logic allows it

website is not allowing to by pass , but is there another way , i got a way to use the extender by chrome , it is safe tho

@twin seal

yo

Waht hapen

do i need to learn internet security protocols if im trying to create malware on my computer?

If you’re learning security, its better to focus on understanding networking and security protocols in general

It will be useful for other learnin or shi

nothng welrk

brain hurty

ow

breh

tell me where did it fail

or what do you need to know now

it fails everywhere

if i try a injection

no go

if i ry to get it to leak

it takes to long

no matter how i go about it

If everythings failing and you only have 15 minutes it might be a sign the intended path is simpler

I am not missing a small payload tweak the real problem is that I do not have a same visit end to end path each visit generates a new random 32 hex secret that expires in 60 seconds and the flag endpoint deletes it when accessed so once the visit ends the secret is gone and any delayed or multi visit readback is useless this means any approach where I try to learn part of the secret and refine it across visits cannot work what I actually need is either a same visit high bandwidth readback channel or a browser only way to construct the flag request using the secret during the same visit otherwise every approach will keep failing because the secret resets each time

i hate this

maybe so but why cant i see the simple path broooooooooooo

damn now thats rough

if the secret resets every visit and expires in 60s multi‑step leaks won’t work,, you probably need a same‑visit exfil channel

or a way to make the browser itself hit /flag with the secret during that visit

Halo

Hi, I need some advice for my professional portfolio. Currently trying to display my projects/competitions. This is how it currently looks: 1 Main image, underneath that is the project name, then a quick description of the project (needs to be updated to 2-3 sentences with a summary of the project - right now it's just taking what's inside the project. Will updated for better organization), below that I have some skills/tools used. Is it better that I categorize them in sections for "Tools" and "Skills" for a more organized look or is keeping them scrambled fine? I was thinking of creating a "filter" section where a user can filter for specific skills or tools then it would display all projects/competitions that match the criteria. Link to picture for reference.
https://imgur.com/x6y82H5

how does someone set theVPN file on a VM

because im trying to have it connect but it wont

we cant give instructions to bypass Cloudflare that would be illegal, check out #📜・rules before asking shi

ok i appriciate your opinion am new on cyber seceurity and that is wy i was asking because it seems to be possible to bypass

no worries, asking questions is part of learning ✌️

Any ideas for personal portfolio website for cybersec freshers

any help here :
AutoFlow Systems uses an AI-powered workflow automation platform to manage their internal operations. During a routine security assessment, you've been tasked with finding any exploitable weaknesses in their infrastructure and gaining root access to the underlying host.

I'm currently using Wix for mine and using some vibe coding to help generate my structure/layout. I've used WordPress before this and used their free templates, but I disliked the navigation it made on the portfolio side. I'm enjoying the vibe code side of things on Wix. Sadly WordPress doesn't offer it so I switched to wix for now

I've also heard doing the "Cloud Resume Challenge" can show off a lot of skills. There's walkthroughs on Youtube that guide you step by step. You setup everything yourself. It is time consuming and challenging. One day i'll do it, but i just dont have time right now

How can i get into cybersecurity
Can someone help me to get the latest 2026 roadmap

forget a roadmap, just learn

Ay fam check out #👥・new-member-guide you got a basic roadmap there

you’ll find out you need so much more than just a specific skill or skills, just be ready to learn a lot

Resource?

#👥・new-member-guide start there and just keep staying curious and research

TryHackMe is a good start too. It's a gamified cyber learning platform to teach you some cyber skills. They have pathways and roadmaps you can start with until you figure out what you want to do

hey ive been trying to change my hp chromebook to a linux software so that i can use ollama ai and i turned on rw legacy with the mrchromebox tech. but when i plug in my ubuntu flash drive it still is not being detected by the chromebook when i go into that recovery/developer mode screen from esc refresh and power its telling me no valid image detected. I used rufus to flash the usb and i used the correct settings to my knowledge and it's still not working im using MBR Partition BIOS or UEFI Target file sys: largeFAT32 and 32 KB cluster, 0 Persistent partition size and 1 pass wtv that means

How do i enter the ctf channel

I need to get into some low level security cameras and pull video

you would have to own these cameras and then just log in via the credentials/management portal

I do own but i dont know the credentials

And or shut down any movement sensors on them to get the sd

You see how this story seems way more unlikely than you just trying to trick someone into enabling you to do something you shouldn't do?

i dont feel comfortable even recommending the normal things i would on this one. Sounds sketchy

Totally get you. I have a friend who very, VERY much would not like people disabling motion detection on her outside cameras for good reasons

But then again.. this here isn't our job.. there is no manager to speak to.. if you feel like someone is trying to box above their weight and sounds like they are trying to convince chatgpt.. call em out, as far as I am concernced. It also bolsters a culture of vigilance for illegal activities

agreed

I got a pentesting internship coming up and I am freaking out over imposter syndrome. What should I be brushing up on to dominate this interview and secure the internship?

hi can anybody help me??

Sure, drop your problem here

i need an AI for real time analysis and which can provide me answers during web cam tests

I checked everything but hard luck nothing happened

So you need help using google on how to cheat on an exam

What's the best beginner ctf on THM

asking for the "best" in anything is always nonsensical or lacks context

Why not use the search function on thm and look for ctf, easy, popular ..

Just trynna get other people's opinions ig

that is the "lacking context" part.. you think "for beginner" is enough for others to know what that, in your case, means. It is not.

Also, what makes you think anyone here who has both enough experience for all the boxes on THM also still has the living memory to recall their names.

if looking up easy CTFs on a website with a search function to allow just that is too much for you.. maybe pentesting/security is not for you

If pentesting can be summed up at as "Find info that others try to hide from you", then "Finding infos that others want you to have" should be nailed down

Why not check some out and tell us..

Hello can someone help me root my phone

what phone is it?

Samsung s23 ultra

what exact model is it? some s23 ultra versions can’t be rooted. also rooting will wipe the phone and trip knox permanently.

I need to check i knwo it will wipe the pohone

ok, check the exact model. if the bootloader can be unlocked you can root it.

I DM to you

no dms please

if you need help, we can talk here.

Alright anyways ok let's start from basic i will probably find video on you tube so I will get back if I will have questions

can anybody help me?? With a PlayStation online problem

That would require you to ask a question first.

could you ask the question?

Someone know what man in the middle mean

why?

oh you mean the attack vector

Fuckin coffee make me read shit

Yes

it basically means that something is standing between two machines forwarding traffic most of the time

forwarding traffic between eachother that is

Yea but can someone can use this trafic ?

the man in the middle usually has access to the traffic, and is the one forwarding it to the recipient

Alright I will dig further

there's a more vast meaning behind man in the middle but i am talking about it from the offensive perspective

Yea I know it's always better to work in team

And if u got team relay will be good choice

Shitt i hate myself

jo i got a question , anybody here got some darkweb knowledge need help setting up whonix and gemeral movement in dread.

its not

i can help you with the legal/privacy side of whonix and tor setup

but that’s it

sure

so whonix or tails on a flash ?

just tell me when u got time

depends what you want. tails on a usb is good if you want a clean system every time and no traces left on the computer. whonix is better for long-term use in a vm because it routes everything through tor automatically.

What's best system for android

I mean what's best to install on Samsung

If I want to be invisible

If you want to be invisible, don't use a phone.

computer is better for that type of stuff

or a laptop is best, easy transport, best way not to use it at home so you won’t be tracked in case of illegal activity

I know but let's say there will be combination on block screen that will wipe it

Or make it look brick and then I can re load it

If you want to remote delete your phone just use an iPhone.

Also I'm pretty sure it also exist for Android

https://www.samsung.com/ca/support/mobile-devices/find-your-lost-samsung-galaxy/

Not remote u have cases that u need to make it look brick or vipe

I mean it does that?

Why do you want to make it look like it's bricked?

If police want to crack in

lol they can crack it

The can't iPhone

There are special hardware by law enforcement that can do that.

Yea I know that but

I won't buy uranium so

Just I need an multi toll

@ivory yarrow it’s easier for you just to get a good laptop and study the internet security protocols, and besides that never power it up or bring it home, as it can be tracked

https://youtube.com/watch?v=kQ7ArdxsAAw&is=FnoDen4nVEZ1-deo

watch this video and study it and you should be good, i mean you won’t learn everything but these are the basic essentials for beginners

Ok

This is a crazy 40 minute video where the dude just repeats encryption, assumes that remote exit nodes that you have no control over are secure, and talks about whatsapp being encrypted even though they are going through a lawsuit about Meta having access to the encrypted messages.

Easier way to be a ghost is to get off social media, and never post anything about yourself online.

as i said he doesn’t explain everything but he explains most of the thing beginners don’t know when i started out i watched this and it helped me a bit and i skipped the encrypted messaging part

Yeah, but what he is saying doesn't make sense.

If you put his stuff together, and use VPN + Whatsapp, then all you have done is told Meta that you are using a VPN. They just associate it with the rest of your data.

i know but he explains the basic low things: vpn, dns, tor, proxy, he dos explain stuff that is good to know when starting out

hey there guys actually i need help in cybersec , i am kind of a newbie or intermediate idk , i have completed networking basics, solved ctfs on tryhackme done some certifications from cisco related to junior cybersecurity analyst carrer path thinking of doing bug bounty now but obiously finding bugs on ctf webpage and on real webpage is far different and hard so dunno what to do
plus confused on which domain should i study now and all
and the main question how to get a entry lvl job obiously they dont hire freshers in this field so needed some guidance and talk with a profeshnal who is right now working in cybersec can anyone help me

If what you want to do is find bugs made by programmers, then I would learn some programming next. You don't have to be a master programmer, but enough to make some proof of concepts, and to read other people's code.

Understanding why the developers implemented a feature a certain way, why it was vulnerable, and how they fixed it for past CVEs will help you understand how to look for more issues on your own.

yep i can code actually i am a btech student so i am having that cooding and developmet background

If what you are asking about is finding a career, then Social networking seems to be key. Making yourself known, making your information known, and approaching companies that want your skills.

Cybersecurity events would be a great place to meet vendors and such for that purpose.

Damn another btech guy

thanks that actually a needed response
but what skills are actually industry needed
like blueteamin red teaming soc analyst etc etc i know all that name
but what actually to do i dont know kind of stuck there

yea 😄

The amount of foundations that you understand, which puts you in a position to learn more

I dropped out of btech after 4 months

Newbie here. Who wanna take me through the journey

Welcome to owlsec
#👥・new-member-guide

i thought of doing smtg similar but what else can i do so still continuing lol 😂

So for example, someone who would be blueteaming would have to understand what a server is, how an application runs on the server, how that application connects to the outside world, what is used to prevent attacks, and what is used to log attacks that get past the defenses. What are your attack vectors that one could use to enter the environment.

Someone who is redteaming, they would have to know similar things, but more of a "How does this application actually work? How does the logging/protection systems work? How do i get around without being detected?"

But it all comes down to understanding each of the foundations of how that thing works, so you know how to manipulate it to do what you need to do.

Understandable

Thanks

Np

thanks a lot sir
but like should i only focus on one domain like blueteaming or red , or sould i just learn explore more cybersec
i actually like ur suggestion of goint to cybersec events make connections and meet vendors like that i can also meet ppls and showcase someof my skills
but for making a good carrer in this field what domain should i choose

like i was thinking now i will study soc analyst path or bug bounty then threat hunting , malware developmet and analysis and smtg

but now that ai is growing and i heard clude new ai can find vulneribilities so was think should learn basic of ml and use of ai tools and integration so that like in future i can go for ai security engg or cloud sec engg smtg

Focus on the skills that those jobs learn, find out which careers use the skills that you enjoy, and then learn from the companies how they would like you to use your skills for that job position.

If you have some starting knowledge for networking/operating systems/programming, then start doing projects that use those things you learned, so you can start getting some personal experience with them.

Fool around with VMs, and set up your own little SIEM that is logging data from a linux VM or something. Try attacking that VM, and see how it appears in the logs.

And you should eventually understand how to use an LLM as a tool. But thats all it really is. It doesn't replace a person, and it is another application that needs to be checked for security issues.

so if i am thinking of learning ml/llm and tools with my cybersecurity journey is a good decision right
thanks you actually helped

Yes, as long as you use it for a tool for stuff you already know, or as a summary for something you don't.

Make sure you don't try learning directly from an LLM, as its information can be incorrect(hallucination from not enough given parameters)

uhm i have a problem with my pc i downloaded stuff on the web but i searched on procces explorer and i see my pc flooded with svchost apps is this normal?

svchost is a windows process

https://learn.microsoft.com/en-us/answers/questions/5627699/how-to-fix-high-network-usage-and-memory-leak-caus

svchost is the process that runs a lot of the built-in Services in windows.
Many applications use it, you have to show the "command line" column in the "Details" portion of Task manager to see what it is actually referring to

yeah but like i know that viruses can disguise themselves as svchost, am i correct? I don't really know

They can also disguise themselves as explorer.exe

You won't always know by looking at the task manager

https://youtube.com/shorts/WwYsV-0kYSc?is=aor-xCQlVp29Rbuc

Its very basic knowledge,I think literal everyone here knows about those topics.

Meta denies the claims. In a statement to Bloomberg, Meta spokesperson Andy Stone said: “Any claim that people's WhatsApp messages are not encrypted is categorically false and absurd. WhatsApp has been end-to-end encrypted using the Signal protocol for a decade. This lawsuit is a frivolous work of fiction.”

i didn’t know abt these things when i started out, that’s why i said it’s basic knowledge and you don’t need to watch the whole vid

i didn’t even fully know what a vpn was when i started out