#👥・help-me

hey guys, need some real advice. im currently learning networking basics and want to get into cyber sec, but im really confused between offensive and defensive.

tbh my family's financial situation is a bit tight rn, so my main goal is to land an entry-level job as soon as possible to support them. im ready to put in the hard work and master whatever field i choose, but i need to know what's practical.

which side actually hires freshers easily? and which one has a better starting salary? i just want to lock in on one path for now, get a job, and maybe switch later. let me know what you guys think!

Blue Team

And Welcome to Owlsec! Please #💬・old-gen-chat we hang out most of the time here

We can’t give you free money. You should ask this somewhere else

🙂

🙂

?

Do you help me

Please

I think I’ve already said no… you should ask this somewhere else and not here. We do not give you free money.

Please give me some work.
For pay

Please stop asking. If you are keep going I’m going to ping a mod. This is a cybersecurity server, not a server where we can give you free cash, nor do we provide any work for you

Ok brother

😞

hey

as in is it a good use of time to learn since i mainly use windows

No we cannot help you. Contact instagram support centre.

Also please do not reveal us your Instagram account as some people here can use it as an an opportunity to send scams to you.

Okay sorreyy

Please delete your message for your own privacy

Done

Well sir when I go to contact center I can't able to raise a complaint

Again, we cannot help you. Your only option is Instagram help center. You are most likely not following their instructions fully to report your issue

Okay sir

Well sir can you tell me how to install kali on wsl with gui

You can Google, there are a lot of tutorials out there

Okay

Thanks

Well one more thing can linux work on low end device

please who can teach me how to use crap or rank

go to #🦉・ranks

and you have to text a bit before you do it

/rank

Hello everyone I am new here and will be going to College in next 4 months and before that I wanna learn about coding and all so where do I start from? Like what language and any video for reference will be really helpful and I am really just a beginner and new nothing as of now so please 🥺 help I will be thankful

Its my friends laptop. I dont even know how she lost the recovery key tbh

But i can assure you its her laptop. She wants me to recover but yeah we got offered in shop for 50 bucks to repair it. I know a way but it involves of windows stuff

I strongly recommend boot.ved/ for python,

but I am not sure about other languages.

Linux will work on low end devices but certain dusro will work amazing with low end and one of that distro is lubuntu it is not ubendu it is lubuntu and if it is really low end Kali Linux will work but not in a really good way if you have 8 GB ram and a good cpu you can definitely go with Kali if you don't have one you can absolutely go with lubuntu

What's ano??

huh

What server is that in ur server tag

minecraft server

If u have 4 months of solid free time u have a golden opportunity to learn programming
I'm 0xfaang who spends most of his time talking and socializing with high-end and skillful programmars like the owner of nullsec and wormhole(top cybersec servers on dc)
I can give u complete guidance on programming

First start with python
Then choose a speciality like what u want to do there are many options like Data analytics, webdev, appdev, ai-ml and many more and study according to ur chosen speciality. If u want any more guidance ping me anytime or could dm me also......

Oh

yes now i need help with bitlocker

Any tips on trying to ssh into a raspberry pi zero 2w

Enable ssh?
Your having some issues or what

Yes I was able to recognize it as remote ndis set the ip and subnet mask accordingly but when I try to ping it times out

Activate ssh? I’ve tried to put a blank text document in the sd card but it disappears

Tried re-flashing using the raspberry pi imager?

Yes balena etcher always fails on me so I’ve been using the raspberry pi imager

Jump on a call and troubleshoot it? Dm

@graceful sedge yeah I really have solid time for programming as I don't have anything else to do therefore as you said I will Start from python any recommendations from where or how to start?

ok come dm

Okk will look into it

Anybody know good ways to verify if a github repo is safe to use. Most are open source but I dont know how to read the source

Use a sandbox if skeptical

Well that's the only way I think to check if it's safe is by reading the source
If it's a big repo with a ton of stars then it should be safe
If it's a small repo try taking the files and ask AI

I need some from the us someone i can trust hook them with a gig holla me asap

No
Read #📜・rules

Ok

Hello....

Hi

Sup

i am biggest hacker alive...

Yo I need help

Anyone there?

With what?
Does it comply with #📜・rules

I think so

Then ask your question

😅

Yeah that's not compliment with rules

Okay then nvm

No black hats here?

Well there are probably some
But the server is for ethical hacking
So non ethical topics are not talked about

Well I need some help with that

Can someone dm?

I want to do bug bounty, how can I build my methodology for it?

@steady palm

dont dm him, he will only scam you

@smoky bear Stop that please

I didn’t

Don’t worry

craxrat

Need help

What’s wrong?

Hey, is there anyone from working in IT. I'm second year student doing computer science major . I need to do a summer internship. Can anyone help me out ? This would be a great help to me

I need a hacker

What??

What means??

Hey yes I am actually
I could assist

So what I can do

Omg. Really. That would mean lot to me

Please guide me I need a hacker

Yeah i wouldn’t mind
You could dm me

Okay

Hello I just finished highschool and was looking to get into an engineering college for a degree that would benefit my cybersec career, I'm just stuck making a choice in between btech in ece/it/computer science if you have the knowledge please guide me

Why? What are you trying to do?

go and be one

i wanted know that if my cyber warnings are good and wont get me in trouble if someone misuses friday 😭🥀 https://github.com/subhansh-dev/Friday-Autonomous-Cognitive-AI-Operating-System

@wanton marsh lemme in touch grass

If you are stuck on something just lay it out someone well versed on it will respond

join VC

Pls help me, I need to learn how to hack a website, my loans app is over exploiting me

Hey any of you know about ICS/OT hacking? i'm actually just starting it out, so if you know any resource for learnng, also some labs then can you share plz?

Please stop tagging staff members and review the #🤝・roles-info for info.

No. Pay your loans. We will not help you.

Read #📜・rules

What function can we use to find (i, j) the coordinates of a triangular part of a matrix when given the coordinate of a line?

Basically it's like
1
2
3
4
5
6
Would become
1
2 3
4 5 6
For example

bro i dont have perms to

Powershell would be better

For each I think

Wdym?

Oh sorry I read wrong
I thought you were talking about programming

Well yeah i was

Then there is no function for that
Just use for each loop

Or you can create a function

Well it's no problem i guess i'll just headbutt it until i find multiple ways to solve it and can solve it anyway i want

Also an option

For each? I only know "for in range" and "for in"

Your coding in python?

Yeah i was asking how would that function look but it's ok

Yep

How can I start hacking?

It should be for loop in python

Check #👥・new-member-guide

Lol same man

I want to learn how to bypass all this server’s subscription on discord

We can’t help with anything illegal, read the rules bro

Sorry it matter to know where am from?

@sullen reef medicat USB wipe and reinstall OS?

How do i start learning how to hack?

😔 #👥・new-member-guide friend

Hi, I have a question, how are currently the red teammers making password spraying attacks against O365, is there any new technique? The microsoft smart lockout is working good.

Do some research and find out 🙂.

Yes, I have done it, but nothing yet, any type of hint?

Well there was a botnet spraying a year ago 😆. Idk what you want a hint for either. Putting some tools in the ole pentest bag?

There are tools to test os365 against password sprays to make sure spelunk elk or whatever is logging it.

Just don't be fooling with stuff you don't have permission or isn't yours

Hello everyone

Hey

Can someone teach me hacking? Please

#👥・new-member-guide

Hello - seeking direction from knowledgeable people. I have roughly 3 years experience with Data Analytics and noticing a trend towards a landscape shift with AI. This has led me to Cybersecurity and its clear value. I’d love to hear from anyone about areas I should focus my learning/attention towards. I just started the THM: Pre Security to get a better understanding of the environment. Thanks

Check #👥・new-member-guide

Does anyone know if it’s possible to route your gpu from your pc to a your bps instead of renting one I heard it’s possible with a VMware but not sure about a vps

Vps*

your gpu can do the followings:
render existing processes, either downloaded ones or ones that exist already on the pc
your gpu is your computer, your hardware

you cannot send signals to other computers to use it, that's not how the internet works\

in short no another computer cannot use your gpu if far away and physically not connected to it

you can route a remote connection to your computer via the vps through rdp to use it remotely but you won't get the feels

I should be more specific I’m trying to to route the gpu to my open-claw or Hermes agent in the vps and I heard it’s possible with a hybrid architecture such s this:

Run the Agent on the VPS: Deploy OpenClaw or Hermes Agent on your VPS to handle the agentic logic, tool routing, and persistent availability.
Run the LLM Locally:

Install LM Studio or Ollama on your local PC to load your preferred model and utilize your local GPU for inference.

Connect via Local Network: Configure the agent on the VPS to connect to your local PC’s LLM endpoint. If the VPS and PC are on different networks, you may need to expose the local LLM service securely (e.g., using Tailscale, Cloudflare Tunnel, or NGINX Proxy Manager) so the remote VPS can reach your local GPU.

So still somewhat possible or no?

@lost vapor

so you're basically trying to deploy an llm on your vps am i correct?

by using YOUR gpu power instead of the vps's

and fetching the results from your pc onto the vps

yeah, hence why these agents need to communicate and do their own set of tasks

Can someone help me setup my vpn dm me need it to connect to my ps5 using my Ethernet

@everyone

these i assume are instructions from ai

you should look each topic individually

unless someone actually did it before then you can look at their guide

Ya that’s I looke it up on ai but whether it’s possible I decided to ask someone from this server if not I was thinking of doing something else instead

probably best to just let your computer do all the work, then save the results into a txt file, or a dataset, and feed it to the vps through http

same thing around

I was thinking of using a old pc / laptop instead of paying for a vps but I at that point it’s might use up a bit of power and it’s a bit of a learning curve for me

whenever user query is requested the vps sends it to your local llm and the local llm just runs and does the task at hand

if you want the vps to do the work you can just remotely set it up yknow

you don't have to have it use your graphics card

there are servers dedicated for llms

Ya but it could be a good learning experience and I have a pretty good old laptop that has a 4060 gpu and 32 GB RAM

By the way I’m a student at a college so all this is still new to me

well
previous option it is then

So you would recommend a old laptop/pc over a vps for running openclaw/hermes agent with local LLMs?

Is someone able to give me assistance thanks? I believe my phone is tapped but I don’t know how…?

no i would still recommend a vps

format it

What does that mean? Lol

@jagged aspen Would I need to use my IPv4 address or the deafault gateway on the browser?

reset it, like it's new

i have a question is it forbidden for people to help others hack ?

depends on what

alr so i had my email hacked right and the hacker changed all my 2fa details to his own one

and yes i tried googles recovery steps already

then no nobody is allowed to provide services of recovery for that

nuts

and if someone does you should report it

because they are trying to scam you

@flint berry is it gmail?

cause sometimes if you can prove it was hacked they will remove everyone from the account then grant you access back

I sent you a dm coach

i had a few people try and help me but im pretty sure they were scamming bc they asked for money they offered and i was like no

they are scamming

well its been a few years

figured

well if you can prove its your account, and it was hacked, gmail will go in and remove all devices for you, reset the password and allow you to login again

and i still havent gotten it sadly. if i use the phone and wifi i first made my google account will i be able to recover it ?

you can recover some of your data onto a computer before formatting it, but make sure to disconnect your phone from any internet available

some stuff like photos or many other files

just make sure not to recover everything

Yeah I’m not that tech savvy tho

i tried pretty much all the steps unless theres a way to contact them via email to get it back then ive tried most

well what phone is that

yeah sorry dude, theres really nothing much else to do

bc i have my ID to verify im the righful owner

iPhone 12 purchased from a second hand phone store

welp

expected tbh

I know right

hypothetically speaking could i hack my email back ?

no

Have you seen or heard of anything like I described before???

then how did the hacker do it

you prob got social engineered

meaning

like phised

couldnt have been

they sent you a link and you clicked it

i didnt open sus emails or whatnot

and links

this was a while ago like i said but my other question stands

this one

depends

many times

you would have to log into the account

WHAT

It’s driving me nuts dude

but i literally cant

i know, thats the problem

you would just have to report the account as hacked

@obsidian bolt

https://support.apple.com/en-us/108931

i still have that old phone i just need a new battery for it bc it was an android and its dead but i have the sim card in my current phone that ive had since that one

which is a w

and the wifi

so dammit bruh

Oh no… no way…!!! I hate Apple customer care!! I’ve been dealing with Apple issues for the past 5 years and they always blame me for doing something wrong!! No way bro

is google like stupid brah

All these types of issues and they always blame me

I need better assistance which is why I’m here

little bit lol

@cinder lynx who is u

ok this is gonna sound sus i know the hackers phone number and i checked and its not in use right can i use that phone number asking the service provider for it and get my email back from there?

chances are the ISP is just gonna tell you to f off

they wont give you anything unless your the police

we're a learning discord server not tech support unfortunately

so we won't diagnose your phone here

I need better hacking assistance which is why I’m here

??

#👥・new-member-guide

If what you are asking for is hacking services we do not do that. If what you want is guidance on where to start #👥・new-member-guide or ask further questions here

Looking for anyone who can guide and teach me on how to be pen tester

What about it?

Would I need to use my ipv4 on my browser or ipv6 or use a ftp server to use my ip on the broswer?

same here

Ok so I found a Reddit post that explains how I could use a openclaw on a vps but also use the hardware on your pc for good performance would this guide be possible or no https://www.reddit.com/r/openclaw/comments/1sjfsrv/best_way_to_run_openclaw_safely_while_still_using/

How can i upload a .exe in a discord channel? 🥲

For what purpose?

Obtain a link to download the file without the need of using file.io or anonymfile

Upload my .exe on my private server

Lowkey just email it to yourself

Thanks

You can also upload to dropbox when copying the link change the last digit of the link from 0 to 1 this makes the link become a direct donload link. Just click the link and the download starts

Dropbox allows .exe updloads?

Thanks a lot guys 😉

yeah

Uuuu nice

Does anybody have any studying material, practice exams, or know where I can do some PBQ inpreparation of taking the Security + exam?

This is kind of silly but can someone help me with 2FA?

uh

how…

Where do I store my recovery codes? And which 2FA methods should I use?

depends on the platform, you could use keepassxc

Depends on the platform? Shouldn't it be the same for everything? Also, keepassxc is a password manager. Can I use Bitwarden instead? Seems like maybe a bad idea since then I have both passwords and 2FA recovery codes in the same place.

Also why use keepassxc instead of 7z?

@proper cloak

password manager with notes and also totp support

a password manager over a zipping app?

Actually yeah that makes sense. I currently use Bitwarden, should I just use keepassxc instead?

i prefer keepassxc, i would

But again, wouldn't my passwords and recovery codes be in the same place?

If I stored both my passwords and recovery codes in keepassxc?

Do you keep them in the same place? (I want to know so I can hack you)

@proper cloak

yeah

yes

Doesn't that kind of defeat the purpose of 2FA?

no

Why not?

because the 2fa code would usually come via email or google authenticator lol

or phone

Yeah, and you rarely use your recovery codes if ever unlike your password

you use both

I briefly forgot about that.

Still, if someone gets into your password manager you're screwed.

Whereas if you keep your recovery codes somewhere else, that's not as big of a problem.

I guess that's pretty unlikely though?

write it down on a piece of paper and throw it under a rock outside idk what u want

if ur password is weak enough for someone to unlock ur keepass db

thats on u

I don't know what I want either that's the problem. I just want something reasonably secure but I don't know what that is.

If you get phished or malwared they can still get in even if your password is strong.

that goes for literally anything

Even yubikeys?

Or biometrics?

Also if you use a seperate device for TOTP then it's also pretty hard unless you get phished really badly and unusually.

I'm becoming neurotic and obsessive when it comes to this stuff.

dude if u just want to go back and fourth and make this a bigger thing it was idk what to tell you

go do what u want with ur recovery codes

random hypotheticals like this the same could be said for yubikeys / biometrics like all types of scenarios could be made up

So I guess I should just be fine enough as long as I'm not using email or SMS for 2FA? And windows hello passkeys or bitwarden passkeys are probably fine for me to use, right?

you’d be fine using a gmail schlawgy

😭

just dont be an idiot and you’ll be alright

...

Yeah, you're right. But what's weird to think about is that your setup is pretty standard and secure, yet if you downloaded some sketchy software (which people myself included do fairly often), someone could probably keylog your master password, get your recovery codes, and drain your bank accounts or whatever. Malware kind of wins against everything.

It's kind of tricky to think of a super malware resistant setup.

But it's probably so unlikely that it's not worth worrying about.

i dont download sketchy software

supply chain attacks have been on the rise, bitwarden did just get hacked

thats about the only way im getting hacked

How is that possible if everything on bitwarden is encrypted client side?

the actual package got hacked

they pushed malware

Bruh. That seems like it should be very preventable.

Isn't that also a potential issue with keepassxc actually?

you’d think but thats the issue with supply chains

its the issue with everything

unless ur making ur own everything

unfortunate

go look into the trivy / litellm hack see how far it really goes

very recent hack

Build everything from source. But then you have to make sure the source code isn't compromised. /j

hundreds of thousands of computers hacked

over half a million

and from that hack

a shit ton more

because it hit the people making shit

and then the people making shit once they get pwned it hits more people making shit

But if you use something such as a separate device for TOTP, biometrics, yubikey, etc. is it more resistant to malware because it's "something you have" or is it pretty negligible? And even if it is more secure, is that level of security against malware pretty overkill for the average person?

absolutely

way more secure

however

at this point you’re just overdoing it to a point you dont NEED to

you could achieve the same basically running everything in a virtual machine and going to ur main machine for TOTP, recovery codes

assuming vm escapes dont fuck you up

which arent a huge threat but do happen

So then I probably shouldn't?

if ur a normal everyday dude u wont need a setup close to that at all

just be technically literate yk

oh this email looks sketchy do the headers look right? verified? who signed it?

voice phishing attempts too just look out for shit and you’ll be ok

Really the only thing I was afraid of was malware.

Phishing is usually pretty easy to avoid... but then again, what if someone made it look EXACTLY like the real thing?

I guess that's pretty much impossible.

there will always be signs

like no ones gonna compromise noreply@google.com

well ig thats POSSIBLE

but you get what im saying

you can make an insanely good phishing page but there will usually always be signs

I am currently doing HTB module (Network Enumeration with Nmap). This was the question I needed to answer (Enumerate all ports and their services. One of the services contains the flag you have to submit as the answer.)
I did a full port scan with nmap here is a small snippet of the result that had the answer. 31337/tcp open Elite?
| fingerprint-strings:
| GetRequest, SIPOptions:
|_ 220 HTB{pr0F7pDv3r510nb4nn3r}
1 service unrecognized despite returning data. If you know the service/version, please submit the following fingerprint at [Deleted URL]:
SF-Port31337-TCP:V=7.99%I=7%D=5/11%Time=6A027D6D%P=x86_64-pc-linux-gnu%r(G
SF:etRequest,1F,"220\x20HTB{pr0F7pDv3r510nb4nn3r}\r\n")%r(SIPOptions,1F,"2
SF:20\x20HTB{pr0F7pDv3r510nb4nn3r}\r\n"); In the module it wants me to set up a tcpdump with my NIC and use netcat nc -nv to listen to tcp and udp I got the answer but I do not understand what was happening behind the scenes. Can someone help me understand what is happening with the tcpdump and netcat listener (or refer me to something I can read) and why would it be beneficial to do this later? I can see in the nmap scan the flag grabbed from the banner so I am curious as to why you would want to set up tcpdump and netcat.

yeah so

nc -nv ip 31337

i would assume you would see the htb flag

the flag was just sent from the server

netcat is opening a connection to the server

this is something you can utilize to get breaches IRL too, something ive personally leveraged with a service called memcached

tcpdump is you watching the packets actively

Oh thanks btw

you could do the same catching on the same interface with wireshark

yep

You could also just use tcpdump

yeah that works

Would you be at liberty to elaborate here as to your experience? I am just curious as to what you were thinking and how you approached it.

when i first hit a memcached instance?

by irl i meant outside of a normal ctf, its still online lol my bad

brains abit fried

but similar idea is exploitable in the wild is what im saying

yes, I do lack a fair bit of understanding so I may not be able to ask more pointed questions.

It is no problem I appreciate the insight you have given me nonetheless.

yeah so i read about memcached once, and also knew i had access to a service called “shodan” so naturally i started looking for services and saw a few large companies

you kinda need to get lucky but you can get very lucky with whats in the cache at the time you dump it

its a relatively unknown attack surface in my experience, not many know about it / have used it to gain initial access ive seen

Interesting I shall look into this more later, thank you for the insight.

yerp

i cannot

nor can anyone here

no

guys i wanna ask something, since my brain feeling like torn apart, due too juggling too much things at the same time. as a undergrad student if you guys must choose 1 path for getting the dream job u want, you guys all in doing portfolios or all in doing certs? right now i try to focus on IT infra things like network cloud n the security itself. sorry if my question sounds foolish, i try to send this message at iot-and-networking channel but seems i dont have permission, maybe because not online for a long time. Much appreciate if u guys willing to reply my silly question

If you can get me new western union USA hit me up we run upto 600usd 60/40split instant payment no logins needed... requires only a working phone number to signup
No deposit required

all good bro

im a undergrad myself, graduate next year with a bachelors in applied sciences for cybersecurity and advanced technologies

honestly, if you want to go more infra side, and make things like networks, def do certs

im leaning more towards the white hat/ethical hacker side which is why im all about portfolios with some certs here and there

in the end man, its really all up to you, both portfolio and certs are good to have, but just depends on what you want your end result to look like

How do I get back to the learn hacking program

#👥・new-member-guide

I heard a lot about cybersecurity and i thought I'll start with famous certifications , people were worshipping comptia security/network+ but it costs A FORTUNE (especially when converted to my country currency INR)
i searched a bit and it says people don't give the exam they just acquire information which should be in the courses
but without certs how do I prove that I've the knowledge?
or what certificates should I do ?

I think CEH And OSCP are best for you

aight man ill search it up!

thanks

This is my personal advice

Can

Can I ask where are you from

Why is everyone always asking where people are from XD

OSINT 😂

Start with the basics. Net+ Sec+ etc. especially if you wanna work government sec+is usually a requirement. Also alot of times you need the certs to get past hr filter unless you venture out on your own.

india

it's so expensive, will it be for sure worth it?

I m also

India

Nothing is guaranteed but it's usually a good path to go. Especially if you can find an entry level job somewhere and have your employer pay 😉

can see that by the name lol

i gotta lock in then

Hi everyone, I’m a CS major, but I got interested in cybersecurity and want to learn it out of interest. Would appreciate any help or guidance.

#👥・new-member-guide

Hi everyone, I’m a CS major, but I got interested in cybersecurity and want to learn it out of interest. Would appreciate any help or guidance.

😔

Mr./mrs. Hellomaties
I want to know about you

Can you tell

Definitely not

Stranger danger 😂

Ok

I want some advice

For my course

https://giphy.com/gifs/blackbeard-schizo-mefingusus-smawtbuXNcbYwjQbz3

We'll be specific when you ask for advice:)

I've applied for CEH but I also need to do a OSCP Please give me some advice.

That's a big jump there. Take it one step at a time.

what is your skill level?
both of those are not recommended for beginners

I m beginner

My course just started 4 months ago.

do not try OSCP then, maybe CEH if you study like 12h/day

Take the Google cyber security course it's free

It's not super in depth or anything just gives you an overview

Then maybe the sec+.

CEH is a theoretical exam and you could techically study for it, but CEH is still not something id recommend for a beginner

I would start below that though with networking and hardware basics

Welcome please read #📜・rules and #👥・new-member-guide

I heard sec+ is a waste of time ?

It's required for alot of jobs unfortunately

What you mean to say is that I should first experience CEH and then apply for OSCP

Comptia has a grip on the industry 😂

you dont learn a lot, its more to pass the HR filters, but its not required
(from what i have heard)

For jobs with security clearance you usually need to have the sec+

im saying that as a beginner you should not even think about OSCP for a few years

Really ? Okay. That’s good to know. Finished the google cyber cert and following the THM roadmap right now 🙈

You're saying that OSCP is not for beginners. So, you need some experience of CEH

Let me ask you do you know anything about active directory? Ldap? Privilege escalation? That's just a small part of what you will find on oscp

CEH is passable as a beginner in a short timeframe since it's theory/multiple choice, but it's widely considered a weak cert by actual practitioners and won't teach him to hack anything. The money is better spent on eJPT which are hands-on and will actually build skill.

Don't try to skip steps and go in order. Even if you can force some of the certs when you skip stuff you have gaps in knowledge that will hurt you in the long run.

I want to become a professional hacker, and I've applied for CEH. Tell me what I should do next. That's all I need to know.

Because I don't have much knowledge

Step by step. Cyber security jobs are not entry level. Start with help desk or something.

look into eJPT, its a quite easy beginner practical cert

but certifications arent like school, you cant just study for 2 weeks and pass it

Also what do you mean professional hacker?

I am sorry but
I don't understand what you're saying. Perhaps you don't understand either. Just tell me what to do after that.

Ok if by professional hacker you mean pentesting just know that you will be doing about reporting for most of the time. It's not like the movies 😆.

I consider myself a black hat hacker, but I applied for a white hat hacker because he works with the law.

I am understanding this

I am agree with you
But what to do after CEH.

You can't consider yourself a hacker at all if you are a beginner. Aspiring to be sure. Also please don't learn the trade just to screw people over and cause chaos. Skills are meant to be used for good imo.

https://pauljerimy.com/security-certification-roadmap/

That's a decent idea about certs for you

i personally would recommend eJPT or CJCA if you want a certification
but you should instead spend your time doing HTB, THM and ctf's on picoCTF or CTF events

May I know where these events take place?

Locally in your city or bigger state ones or online just search and you will find
Edit: talking about CTfs

you can get the certifications here:
https://academy.hackthebox.com/app/exams/7 (CJCA/HTB Certified Junior Cybersecurity Associate)
https://ine.com/security/certifications/ejpt-certification (eJPT)

these are practical exams meaning that this is not a multiple questions exam, and you can take it anywhere you have stable internet

Are they free?

no, they are not, i do not know a single practical exam/certification that is free

OK tnx

It's free if you can get your employer to pay 😆

for that you need a JOB

Yeah so find a low level job that sucks but they promote continued education. Easier said than done I know. You also need a Job to afford to pay for certs so it all comes back to get a job in the end 😂

Got a question I've been meaning to ask
Can anyone help me?

i probably can, what is your question?

To do hacking Do I need a system?

Ok finally 👆

it is recommended that you have either a laptop or some type of pc

you wont get far with mobile only

Ok

But Would I have to enter the dark web before hacking?

No Seth

No

👍

Thanks man

But one more thing

Sure ask

Can anyone access the dark web?

Lol yeah

Just need tor

If you wanna learn cybersecurity check #👥・new-member-guide

I know you need tor but where do I search tor?

I'm already learning just need clarity for that

It's a browser

idk if I can share links

https://www.torproject.org/download/

Just make sure you get the bridges set up ..and be cautious lol.....you probably shouldn't surf in there if you are new to it

Ok thanks man

So you are far in the game right?

Don't do anything stupid or search for it on the dark web always remember police exists

Stupid things like what?
Or search for things like what?

wont be mentioning them, just think about if its legal, if a police officer was behind you, would you be searching that?

Ok man

I won't be going there until I'm done learning

👍

good day to you stickman!

Hello

Good day to you too Infiniti

Wassup guys

Can someone help me with hack tools

Most legit hacking stuff are on the clearnet. Te darkweb is full of fake sites, fake goods and heinous content in every corner. Just stick to the clearnet.

haha you wanna phish a whale or seal?

You can get them on amazon prime

Will do

I'm looking for a mentor who will teach about coding or hacking

Ok

Can you teach me

learn python and apply for the lead dynamics engineer role at spacex

None here will teach you check #👥・new-member-guide and #💕・free-resources

Ayt bro

If I get a regular coffee I am free on my evenings lol

I just learned packets, TCP/IP, routing, DNS, ARP, Firewall and IDS and I would like to know if you know where I can practice these new skills to better master them?

the better way to practice those skills is if you build your own lab

using virtual machines

you could build your own little company with their own local ip address, and build a network that has a server router, a dns, a firewall and perhaps even an IDS too

Osint tools?

Okay, thank you ! !

@lime gorgewe do not provide hacking services here, we're simply here to learn and have materials for you to learn on your own

kindly review our #📜・rules

Why? i barley surf smoothly there

Did somebody code in luau before

?

Lmao

done a tiny amount a few years ago, why?

YDEK

Need help on how to collect the player position for information and am on Roblox studio

The best forums are on clearnet with tor mirrors so what are you saying

Isn't this the same as lua

malicious actors use jabber, xmpp, telegram for communications

so what are you saying

The best forums are on the darknet ...I actually learn more there than in here

Exploit,mazafaka,xss,bhf and all the forums that get taken down by law enforcement are on the clearnet

Some telegram groups have more going on than the darkweb fr

You just don't know where to look at buddy

Best forums are invite only

Or you do some sorta test first

Trust me. You don't wanna go there

Like cryptbb BB

Trust me I do

cryptbb is basic and because a forum is on tor that doesn't make it's content superior to those on the clearnet

for _, player in pairs(Players:GetPlayers()) do
    if player.Character and player.Character:FindFirstChild("HumanoidRootPart") then
        local pos = player.Character.HumanoidRootPart.Position
        print(player.Name .. " is at " .. tostring(pos))
    end
end```

The darkweb forums these days are mainly drugs when it comes to hacking clearnet is the way to go unless you are a member qilin or some other ransomeware team

@fiery pewter that's Lua ,try that or DM

Just ignore him

Thx I am gonna try

look at reports, arrests e.tc. the data speaks for itself

You're capping. You're not even on exploit

Hello I just finished highschool and was looking to get into an engineering college for a degree that would benefit my cybersec career, I'm just stuck making a choice in between btech in ece/it/computer science if you have the knowledge please guide me.

If you say so

The darkweb forums are so messed up you can't even tell the legit from the clones many times you still need to check a clearnet domain to verify the onion link is legit

Skill issue

and ya'll come here with this bogus talk like the darkweb is some illuminati

that's you not me

I do malware. I bet you don't come close

The point is that most threat actors are on there ,it's such a no brainer

Am a sec Dev ...plus I literally code and sell malware on cryptbb,look me up

Now shush ,the back and forth is so draining

You can sell malware?won't that be illegal

if you are that good go to exploit forum where you deposit 10,000$. Your skills won't pass moderation

that's why you use cryptbb

lol

If you tell me you're a vendor or cabyc or freedomcity, or exploit or mazafaka. I'd respect you. But using cryptbb as a cv come on man

It's not a CV lol

If you really sold good malware you won't be here announcing it. People who sell malware don't talk like you

they don't brag about it

Muted lol

There are ambituous cysec people looking for a way to deanonymize them 24 hours

I didn't brag

I responded to your remark

Who do you think tips the fbi

That remark

Is that illegal

Or there's a legal way o sell malware

You don't come close go back to cryptbb and eat hay

Lmao

Alright

Can we now shush

Never knew you could sell malware

Its intellectual property

There are people on forums with ads pinned by the admins looking for 0 days some escrow deals get up to $1m it's a whole ecosystem

Intent is what they look at

How do I start learning specifically towards this niche are there any free resources available

Complete beginner though little bit coding background

join a russian malware team lol

Something that won't get me behind bars

I infiltrated a russian malware team and understood their operations

Damn

their stub used only dll sideload

giving it 18/70 on vt

Don't know but that sounds cool

they poured traffic. traffic is the number of people who get infected. They use heavy russian slangs

translators can't understand

for instance

escrow is translated to automobile

and victims are called elephants

or mammoths

And you decrypted their entire ecosystem?

They wored via a telegram bot panel

you could build your stub from your panel

and it getts tagged with a unique id

when a victim clicks

it delives a stealer log which is processed by the admin

they process everything

from crypto to cookies

it was vicious

Yeah sounds insane

the team had more than 500 dedicated workers

every few minutes a new log notificatio popped up

Anyway I'm complete beginner though,you sound professional any tips you got?

I understood how the malware was being spread because the stealer took a screenshot after the fatal click

I observed it was mostly roblox mods

and apps on sourfceforge

There was a special group within them that had a rare pdf exploit

There's malware in open internet too?

they ravaged people of crypto

I got caught and kicked out

google translate and deepl gave me up

they just knew i wan't russian

Did you report them or tip to fbi or something they do in the movies

I wrote articles on them

Well name of article?

Not critiquing just interested

I defanged sensitive info in he article but I stil had to archive it after a while

I watched this video of retro car scams on youtube

So it's not posted on some site or shit

yeah

by ntts

I found the guy who ran the scams in the video in less than 30 mins

I even chatted him on teegram

but he was to scared because the ntts video brought so much attention to their operation it closed

To me you sound like mr robot

Honestly

haha

How did you get so good

I just like digging for information

I'm passionate about this field too

How to start out

I can stay 5 days looking for something

I won't even take a bath lol

Dedicated person

I also infiltrated

Rublevka

What's that

a russian team that's stolen 18m dollars +

they are still very much active

Can I add you to my friends list if in future I need some guidance or something

There are some crypto scam teams here that use a funny discord vulnerability

I'm surprised discord hasn't blocked it

Still unpatched?

perhaps it's tied to a core function

what they do is

they monitor chats

How

.

They use custom scripts

there's funny script that sends a fake [#support] ticket so when people complain they just paste it

It takes you to a cloned server with fake bots in it

before the victims knows what's happening it's too late

glad bots can detect it these days

Hi guys

Hey welcome to owlsec

Thanks

Hey guys, need some advice
I'm currently doing an internship to work as a Project Manager in future (I have 3 months). To be a PM I need to understand the base of Python back-end. I would love to be a PM, I have great soft skills, but not back-end skills at all. Can u guys advise me in which way should I start to learn back-end to be able to know it in 3 months?

I don't need to be a great programmer, I just need to know the basics and to be able to kind of read a code

Then watch a tutorial on YT for free about python programming and then a do bit of research for backend and backend python

If you want to use money you can check boot.dev apparently they are good and they specifically teach backend python

SSUP

Hey guys. Can anyone guide me on how to get that video call software on my pc?

🙏🏾

Huh

What video call software?

The one guys use on their gaming pc to swap face, and make video calls with any face they setup

Wrong server for that but if you Google it I'm sure there are tutorials on YouTube

Identify the software first lol

Do some research and at least try before asking for help that way you can ask for help on something specific.

What are you guys on about? If I haven't done a research already will i be here asking for help?

If u don't knw it, it's 🆒

Simple as ABCD, no long talks🤷🏻‍♂️

And all i know is that there's a prompt for it and when it's installed you lunch it with OBS studio.
And like you said wrong server, understandable

Google is your friend

That’s all we’re saying

And all i'm sayin' is, i done did that already

Learn to read love🤦🏾‍♂️

lol ok bro

hey guys quick question here . Sorry to bother you. I never delt with these kind of things but my job is to get a job in cyber security working from home. Where should i start first ? never been related with any jobs alike , but i have done a C# course in the past , i would need some to refresh some info.

They'd tell you to use google mate. Bunch of du** folks in the server

... ok

Anyways you should check out #💕・free-resources

i would recommend starting in #👥・new-member-guide if you want to learn cybersecurity, hope i understood your question

why so hush i just asked a question , i want just to talk with a real person that can be showing me a thing or two , been on google . anyway thanks

I said research first you just asked about "that software" which is incredibly vague. It's hard to help if you aren't being specific.

https://cdn.discordapp.com/attachments/1012079751445352518/1503275893416529990/argkdt.gif

like deepfaking software?

New member guide gives you direction once you have specific questions ask away. 🙂

A good example of a specific question hey I'm working on the try hack me offensive security intro course and gobuster is giving me error blah. I tried blah blah. I also Google the error and tried a few things there, any suggestions? This is just a random example of what a good question may look like. Just asking people to spoon feed answers like an llm is not going to help you learn and grow.

Does anyone have a self-made Support/Donation page with Razorpay gateway integrated?
Something similar to Buy Me A Coffee, but fully custom built (frontend + backend).

For whyyyyy

I see, alright man, thankyou so much, appreciate ur time for replying to my message

Don't get scammed

He's getting scammed

And don't scam

There is no such thing as temporary money on block chain

So I can accept payments directly on my own Razorpay account instead of using platforms like Buy Me A Coffee.
I want full customization using Razorpay API Key & Secret, support for both INR and USD, and the ability to add support/donate buttons directly on my portfolio and project websites.

Sounds like you need to develop it or pay someone to do it 😆

Can I use a Docker container instead of a virtual machine? Because my laptop doesn't have much storage space and has trouble supporting virtual machines

yes it's what they're made for as well kind of i am sure

Thank you ! ! !

hola every1 am new here

welcome, chat's in #💬・old-gen-chat

buy a remote desktop subscription

hello.

the rain in spain falls mainly in the plains.

You are talking about deepfake

why cant i join vc?

I've not seen anyone using deepfake for anything legal

I was on a forum where a russian celebrity was deceived with deepfake

The worst part was the fact she was deceived by spiderman

not Tom holland but a deepfake spiderman with the literal mask

She was from eastern Europe so they aren't really exposed to western media

she thought she met spiderman

🤣🤣🤣 I laughed my heart out

i need help in something kind of personal and i hope that someone dms me if they can help

she did. that was me. i’m spiderman.

I’m building it myself, and most of it is already done 😄
Right now I’m mainly figuring out where to deploy everything — frontend, backend, and database.
Also trying to decide whether setting up Razorpay webhooks is actually necessary for my use case or not.

You can also see my portfolio in my discord bio 🫥

Can someone that knows about python and coding plz dm

For $

Naah bro

I made it in my coaching classes 🫠

Yeah, I used AI mostly for some background/theme styling ideas 😄
But the actual functionality, integration, backend, and overall structure are built by me.

Yeap

Haha nah 😄
The portfolio is actually built by me. I only used AI for a few visual/theme ideas and small tweaks.

I originally wanted to use a full glassmorphism UI, but at that time I wasn’t really understanding how to implement it properly, so I ended up building it without glassmorphism.

Btw What about you though? Are you into web dev, cybersecurity, or something else?

Im beginner

#👥・new-member-guide

Is it legal or illegal to run an Nmap scan on a network?

do you own the network or have permission to run such tools against it?

No I don't own the network

then i’d advise against it. 🙂

Okay

👍

Unless you have explicit permission in writing it is illegal

Even then you should have some rules of engagement or something similar to what you need if you are pentesting

Nmap can cause issues for whatever network you are looking around in certain circumstances

yeah of course man

good luck with everything

jipitty

HUH?

hi, i'm repairing my old begonia, i was experimenting on it trying to install a different rom, the whole boot chain was broken, thanks to a teacher of mine repairing my lk i managed to get it to a full boot(i think) but i'm having dm_verity corruption failure on boot, any help is appreciated!

any good videos etc to learn networking

the fundementals

tbh i need a roadmap

network chuck, professor messer, etc

For "roadmap" like video I would look into professor messer's Network+ Certification videos. He sorta does it in a way it builds up on each other. Other than that I would say heavily look into the different topics he mentions. There will never be a perfect roadmap.

Hello

First of all. If you are able to create a full backup

Unlocking, or flashing can wipe data.

I'd say an easy safe fix would be to try to restore the stock ROM/image with fastboot since it often fixes corruption

Are you able to send me a more detailed error message?

noted, thanks

Pls I need WhatsApp unban tool

We do not work with that here

Did whatsapp mistake you for a bot? That happened to me too, it's incredibly annoying. It kept happening even after they unbanned me. Contact support, you'll have to wait a while.

Nope make new account or talk to Whatsapp

Thanks

If you keep getting banned is someone is probably using your account

No

No it happened immediately after I made my account.

Cause I added a bunch of people

Someone was using your number then 😆

That's odd 😆

You think? How would I verify that?

Regardless of what happened turn on 2FA

Anyone to help me with a good strong vpn

Mulvad

Proton if you want a gsuite like thing going on that also has a VPN

You could also rent a vps and host your own

How do I rent a vpn and host my own

vpS

Virtual Private Server

What vps do you recommend

I don't recommend any cause it's different everywhere. Just google and look around. Might be easier just to use a VPN service mulvad costs 5 bucks a month

Proton is like 5.99 and cheaper for long term

Thank you for your help and I really appreciate that

No don't do illegal things. For one it's not nice and 2 you can still be tracked :).

One more lost, do you have any idea of a good free online to receive a sms for activation

I’m not into illegal things

Huh

If you are not doing illegal things it's not worth going through so much trouble to scrub yourself from the Internet. Just do the basics

I understand

HELP ME!!

✋️✊️

what do you need?

Money

Dinero

Chick ching

why? what happening?

I just want money to buy my laptop to start working 😎

And to fund more theory researches like the one i posted couple mins ago

And definitely help people and the community

And serve them

make sense

where are you from?

Earth

But i live in the western hemisphere

?

I mean your country?

Ooooh no i dont give out personal info

if so, bye

See ya

Don't pressure people into giving out their personal info

where ru texting from?

From my phone

Please read the #📜・rules , we sont do that here.

@wicked smelt

Hey guys i need some help with Emails

all my mails remplaced with a red message that want me to pay

Can i reverse it ?

contact support

Yes

!

Hey guyz

Hello welcome

So am been looking for a community to join pple with same hunger and want to learn and improve their skills day in day out but the pple i interacted with on the chat are not proffesional at all

professionals aren't going to collaborate with you if you aren't a professional yourself

yo

can i help get help jailbreaking my ipad?

Been proffesional I asked

not recommended but
you can probably research that if there is an available jailbreak

its a old gen 3 ipad

Help me choose a domain in IT industry, I couldn't choose any domain by myself.

been proffesional? it's professional btw

cant use it currently as its tellng me to update the ios

but the current ios wont work on it

is that possible?

I have no idea

well you need the exact version in order to research

aka model's full name

most private companies just do (your name)IT/Tech

I mean, I am a computer science student.

I want to learn skills based on domain and role.

Can you help me

oh a domain? you meant an area of expertise
here's what we offer to learn here #👥・new-member-guide

I am not interested in Cybersecurity.
Excluding this domain...

well, this discord is less likely to help you with anything else tbf

you still havent specified which domain

No, I didn't

glad that we are on the same page

Fahhh🫪

Help me y'all

well if you want us to help find skills to learn based on "domain and role" we would need you to specify domain and role, just "domain and role" is way too vague

I want your help to choose a domain and role then to what skills to learn 🥲

How would you recommend deploying the frontend + backend together?
For the database I’ll probably use Supabase, but I’m still deciding where to host the frontend and backend for free.

I want something where apps don’t sleep, or if they do, they start back up quickly.
Any good options you’d recommend?

vercel, and cloudflare pages are nice for the frontend, and cloudflare workers for backend, used it once, works good enough

what platforms are raw data breach email and passwords usually dumped on