/cyb/erpunkWhat is cyberpunk?: [ https://pastebin.com/pmn9vzWZ ]Cyberpunk directory (Communities/IRC and other resources): [ https://pastebin.com/AJYry5NH ]Cyberpunk media (Recommended cyberpunk fiction): [ https://pastebin.com/Dqfa6uXx ]The cyberdeck: [ https://pastebin.com/7fE4BVBg ]-----/sec/urity"Shit just got real": [ https://pastebin.com/rqrLK6X0 ]Cybersecurity basics and armory: [ https://pastebin.com/v8Mr2k95 ]Reference books (PW: ABD52oM8T1fghmY0): [ https://mega.nz/#F!YigVhZCZ!RznVxTiA0iN-N6Ps01pEJw ]/sec/ PDFs: [ https://mega.nz/#F!zGJT1QQQ!O-8yiH845GN26ajAvkoLkA ]Learning/News/CTFs: [ https://pastebin.com/WQhRYB59 ]thegrugq OPSEC: [ https://grugq.github.io/ ]#! sec guide [ https://pastebin.com/aPr5R1pj ]EFF anti-surveillance [ https://ssd.eff.org/en ]-----Thread Wiki is up: https://wiki.cybsec.io/FTP: ftp.cybsec.io
>>78270125Yay!>Thread Wiki is up: https://wiki.cybsec.io/Sadly not. It was parked earlier but now we just get a timeout. Archive is abailable:http://archive.is/nMkSN
>>78270263disgusting nigger in imageopinion discarded.
Cyberpunk has nothing to do with Cybersecurity
>>78270294Anime has nothing to do with C++
>>78270294Did you delete your last /sec/ only thread or did the jannies? Either way I hope Linux question anon saw my replies.
>>78270574They have been rather erratic lately. A research general in /sci/ was put into autosage with no warning and no explanation. Yet countless Apple shill threads litter the boards.
>>78270286How about a Russian?
>>78270294They both begin with "Cyber".
>>78270850Is this Masha Babko?
>>78270999I think her name is Natasha, though at least one well known Russian model is known to have more aliases than a retired spy.
just as you though people would have learned:=== /sec/ News:>3 TB of Private Webcam/Home Security Video Leaked on Porn Sites (inputmag.com)https://yro.slashdot.org/story/20/10/18/1850229/3-tb-of-private-webcamhome-security-video-leaked-on-porn-sites>A hacking group that has yet to identify itself found and stole more than 3 TB of private video from around the world — mainly collected from Singapore — and shared it on porn sites, according to reports from local media like The New Paper. While some of the footage was indeed pornographic in nature, other videos are more mundane.>More than 50,000 private IP-based cameras were accessed by hackers to amass the collection. Some were explicitly tagged with locations in Singapore, The New Paper reports, while others revealed their location as Singapore based on context clues such as book titles and home layout. Many show people (sometimes with their faces censored) in "various stages of undress or compromising positions....">It's looking like poor security is the culprit. Clement Lee, a solutions architect for multinational software company Check Point Software Technologies, told The New Paper that the hacking of IP cameras is often due to "poor password management." IP cameras make it easy to access your video feeds from anywhere — which means it's also easy for hackers to access them from anywhere, once they've figured out your password...
How do I learn how to IIS
Maderas returned to twitter>I want to thank all of you; I believe the attention paid to my absence here kept me physically safe.>I didnt mean to worry you all; I refused to give those targeting me an inch & that meant only returning online (in person) when I could ensure my safety/security.>Thank you.Isn't giving specific details. Just sort of returned to normal.
>I need to get a regular license before I can get a motorcycle license How will I be cyberpunk now?? I have to basically double the cost to ride a bike.And I have to learn to drive a carFuck this
>>78272543>In May, research I conducted caused me/my personal lab to be targeted by sustained attacks & direct surveillance (the entities in question love WolfSSL, LynxOS, StoneOS, etc.).>I perservered.>I am unbowed & stronger/smarter then ever.>I'm back (& so is #CyberpunkisNow).>>78272572@hackermaderas who disappeared in may without a word
>>78272543>Maderas returned to twitterInteresting.And still a bit cryptic about the return though he clearly has returned to his old level of intensity.
>>78272577underage pls go
>>78272619sounds like a schizo. has he said who """targeted""" him?
>>78272543glad he came back from his psychotic break
>>78272572Previous /cyb/+/sec/ thread OP.
>hackers LARP generalbump>>78272543oh, so you guys got your own e-celeb. kek
>>78270125I'm fairly sure these questions belong in this general, but tell me if I'm wrong.This is probably a stupid question: P2P real-time communication apps are already self-hosted by definition, right? I'm asking because I read self-hosting is a must to at least have a fighting chance of achieving privacy.Oh, and if anyone knows a good P2P application with more features than Briar but that still offers the same privacy that this app does, I would greatly appreciate it. I was considering Jami but it doesn't have contact verification features. I haven't done my research on this apps, meaning I don't even know if all are P2P, but they are the last alternatives remaining: Tox, Linphone, Mumble and Rocket.chat? I will look into them later, however feel free to tell me if you know anything bad, privacy-wise, about them.
What are things to do once you get control of a router
>>78270440now you have taken it too far, kiddo
>>78272577>have to learn to drive a car ngmi
>>78272577>How will I be cyberpunk now??Easy: read the FAQ.
>>78277058We really should update that /cyb/ music list.
>>78277063>>78277943Stop bullying me
>>78278442Not bullying, we are comfy around here.
how necessary are big ass ads for the cyberpunk aesthetic?
>>78279363Very. As it overtly characterises the runaway commercialization og everything.
>>78279377thats what i figure, but i wonder if people just want it because "ooh big city lights"
I love this so much. I've been doing little else for the past few weeks than learning networking and cybersecurity. But I need to force myself to stop now and start to study for cs exams.I have 2 years left and an IT job set up for next year. What else should I do to have a strong career in cybersec? Security+?
So what is the /sec/ consensus on certs? In my country no one seems to really care for them but are they actually a big deal in the U.S?
>>78279363Add some rain and a touch of fog and it is perfect.
>>78270294Hey, is that the larp anon? It's been a while.
>>78270294Yes, it has something to do with it. As society becomes more and more linked cybsec is paramount.
>>78278692Just because I don't know anything about /cyb/ or /sec/ doesn't mean you can bully meI'm hopeless with technical computer stuff but I still want to do something
>>78282248>Just because I don't know anything about /cyb/ or /sec/ doesn't mean you can bully meI don't bully anyone, quite to the contrary I instead point a way forward.>I'm hopeless with technical computer stuff but I still want to do somethingWe all started at zero. Then we slowly gained knowledge over the years, sometimes by reading, other times by advice from someone experienced. What sets this general apart from most (all?) others, is that we made several FAQs to bring people up to speed in the most efficient way. These started out as plain text pastes at least 3 years ago and have grown over the years into rather comprehensive documents and they are still being edited by the respective anons. One has reached 35 pages and is free for all to download and read. All 3 FAQs are here: http://archive.is/nMkSN
>>78281294It needs something...
>>78283076... women in futuristic, yet minimal, clothing?
>>78278442>be nice to me 4chan!faggot
>>78283146I was thinking more like umbrellas and neon light strips.
>>78281294If you're going to use this for the OP of future threads please optimize it so it's smaller and not almost 4MB
>>78283223Nothing wrong with being nice to people even without "obligation" to do so. Are you a post-2016 new friend?
>>78283350How big do you want it? I was just fucking around a bit for a low-quality shitpost and don't usually bake the breads here.
>>78279645Just stay learning and interested imo. The skillz and the certs come with time and money. But no one cert or field of cybersecurity has a monopoly on information.
>>78282634no I can't do tech stuff at all even with active learning. it's not about lack of effort of lack of knowledge on how to get started. I just want to ride a motorcycle because I can't do anything else
>2077>get the new Tesla Model S3XY™™™ Elon Edition>take your qt out for a spin around the new LA>forget to update the anti-MOSSAD ADAS filters>die to the replicant hordehttps://www.wired.com/story/tesla-model-x-autopilot-phantom-images/
>>78283463I am not giving up on you yet; what is holding you back?
>>78283742General retardation and lack of motivation or real interest (I like the idea of being some cyb dude but I don't really care about cyb stuff)I just can't get excited about technology in general anymore when it's all so shit AND hostile
>>78283941If it is any consolation, we are all cyb dudes here since the world of 2020 is more or less what the cyb authors of the 80's projected, complete with filth and hostility. Most here and most of the characters in the early books wanted just to live under the radar. That is why you see so many references to comfypunk.as for tech itself it has become so complex that few have any overview outside their narrow niches. The renaissance man will forever be a concept of a receding past. So just fine your niche, apply some autism grade intensity and get a reasonable grip while keeping an overview of adjacent areas. As for news, much is noise and speculation, far less happens in reality.The interesting thing, blogging on here, is that this growing complexity is not limited to tech, you see the same problem in the rest of society such as in law. Nobody even know how many pages the tax laws etc,. fills. And in addition to law there are the rules, regulations, guidelines, case law and preparatory work. To put it plainly: it is a mess. And the conclusion from 2000+ years of investigation, there is only one thing that will reverse this ever growing complexity: collapse of civilisation.
>>78270125Do you have a high res version of that pic? I'd love to have it as my desktop background (3440x1440)
>>78283432I've been here for just over a decade. The prevailing culture on 4chan has always trended towards the masculine norm of benevolent hostility.
>>78284460There are a few that are higher res than OP but I'm not seeing any that are as high res as your monitor. You might find one you like through reverse image searching:tineye.combing.com/images/images.google.comOtherwise, the image is a frame from the 1988 anime film Akira, which you could screen cap to your own satisfaction.
>>78284499Do you remember when the first /cyb/ generals started?
>>78285098By "here" I meant 4chan. I was on /b/ for a couple of weeks before branching out into other boards, mainly /k/ at first and then /out/ and /diy/ when those came about and /pol/ for a bit once the jannies started pruning weapons politics threads from /k/. I'm admittedly new to /cyb/ and haven't spent a ton of time on /g/ in general versus those other boards. I also spend a little time on /po/, /wsr/, /ck/, /lit/, /his/, /int/, /sci/, /fit/ and /o/, in no particular order.
I've been looking to retrain for a new career and cyber security looks like a good fit.For research I've been going through resources on ethical hacking and cyber security.I understand the basic concepts. I will have to do more a lot more learning but I don't think it's out of reach.What I'm really asking is if it's possible for someone who's older with non-college qualifiactions to break into cyber security?
>>78285217This is the only thread on /g/ that isn't shit anyway
>>78285574I've been navigating straight to https://boards.4chan.org/g/catalog#s=%2Fsec%2F and sometimes swing by >>>/g//sqt/
>>78285697I browse /g/ generally as some form of abstract self harm. It's everything wrong with tech at large and by all the worst people (/pol/tard leakage)
>>78285218p.s. Fuck I'll become an electrician.
>>78284186I wish I could love under the radar but even that's impossible Posted from my Android Device
>>78282634>>78283742>>78284186not him but those are some nice posts and got me motivated, thank you
>>78286271>I wish I could love under the radar but even that's impossibleHmm. I really think you should try your very best to make love under the radar.
I forgot a long time to tell the hue anons about this IB.Because of 56chan, i made it work ala infinity, yet there is more to be done, when i finish all my personal shit, I will get support for i2p and improve other things.The domains now arehttps://reinchan.org/, uses BitMitigatehttps://firechan.org/, uses DDoS-guardhttps://110chan.org/, uses Cloudflarehttp://4raq26pvpjqhg6a7vpykxz6ln7t3rymtjn4lmqeeq3hr4xqmlkff2mad.onion/, hidden service.Probably, in a distant future, I will deploy a git instance for us.
>>78281581>>78274653Shit I got you confused with someone else larp anon. How are you doing?
>>78287734dont understand any of it but i added a module for your site to my WIP imageboard client
>>78287734>/arquivo/Holy shit, how the fuck you made a retard literally drop salt on his eyes while saying he loves lain, what the fucking fuck????????????????????????????And another retarrd eat soap to stop the doxxings lmao
>>78285217>>78285574>>78285697>this is the kind of people that visit this generalsad
>>78271980Finally, hackers that know their priorities.
anyway to hack a password that is 17-22 chars on a rar file?
guys, im getting security clearance...im scared.
>>78287734Oh, nice to see news on this again.Finally made it.Hope this one lasts more.
>>78288846you're upset that 4channers are on a 4chan general ?
>>78289213did you lie? God help you if you did
>>78289213I got fucked out of mine just for posting on 4chan and I don't even go to any of the controversial boards.
>>78290026What specifically fucked you out? What did you say on 4chan that fucked you out?
>>78290026Seriously? Whenever I have asked in this thread people say "oh yeah you're fine, you really think your average cyberbsec person doesn't?"
>>78290649>ahem, a toast>fuck jannies>fuck trannies>wtf I just got fired
>>78290677>"WTF /pol/posting gets me fired???"For fuck's sake, if you treat /g/cyb like the cooler version of Hacker News I doubt you'll have a problem. The guy who got denied is probably full of shit and embarrassed for the real reason he got denied, or got denied because of the content of his posts (racism, political extremism, school-shooter-tier crap, etc.)
>>78290705So they really look at your 4chan posts lol? Never gonna make it desu. I shitpost so much.
>>78290705>used to post on /r9k/ when I was a bitter nofriends virgin>some of my posts close to schizoposting>since learned the err of my waysThey probably don't want me, do they?
>>78291196>>since learned the err of my waysWhat does this mean, exactly? Have you gone to college? Held a stable job? Had a couple long term friendships? Gone to therapy? All these things work in your favor even if you've had a rough past.
>>78290026how could you fail security clearance for posting on 4chan? i'm unfamiliar with this process
Is TryHackMe any good? Or should I stick to boring ass OverTheWire?
>>78273167Be ashamed cuck, 27 with no licence
>>78290667True. Indeed long standing rumours are that NSA staff has been slumming it here for years. And what would be more amusing than one of them applying for a mod opening?
>>78287615I can't every time I love the police come knocking just to mess with me
>>78283941>I just can't get excited about technology in general anymore when it's all so shit AND hostileGood, fuck off and stop shitting the thread up cunt
>>78294331whats your problem normie? most people empathize with that
>>78285098>Do you remember when the first /cyb/ generals started?Yeah and they were and still are garbage. /hmg/ has always been where it’s at
>>78294347What’s my problem? My problem is we are 101 posts deep and there is not one single bit of sec discussion in here. Merging with you cyberpunk poofters was a fucking mistake and I wish it never happened.>>78294363
>>78293266TryHackMe is pretty good.
>>78294392ok you're free to leave
>>78294392>if you're not technical you're invalidSuck more technocrat cock. Maybe you'll get that IT job you want.
>>78294363>/hmg/ has always been where it’s atYet the last few times it sank like a lead balloon to page to with single digit replies.>>78294392We have already had /sec/ News, we have those in most threads, you are also welcome to make constructive posts too.Secondly the /sec/ + /cyb/ has been a marriage of convenience for years now, and /sec/ without /cyb/ sinks at least as fast as /hmg/ off page 10.
https://www.youtube.com/watch?v=AkvjstCXpqgThis is a great interview
>>78292489Well I was already in college at the time. But I have a stable job now in a related field, no long term friends yet but I actually have acquaintances and friends (not long term though) now. I still ironically shitpost on here sometimes but I'm a better man than I used to be.
=== /sec/ News:Sweden, an neutral country, not member of NATO, has decided to ban Huawei and ZTE:https://www.pts.se/sv/nyheter/pressmeddelanden/2020/fyra-sokande-godkanda-att-delta-som-budgivare-i-35-ghz--och-23-ghz-auktionerna/
>>78297030>sweden>neutrallmao, we're in deep with the US intelligence agencies
>>78297030>SwedenImplying daddy wouldn't defend them if the fire nation attacked
>>78297224Officially you guys are "neutral", but of course most alphabet soup agencies are in bed with each other.Finland was also "neutral" and had some unwanted attention from Soviet agencies. Supposedly they once had some dirt on a Finnish politician and a few agents met him and had a large pile of compromising photographs, or so they thought. The politician looked through the pile, picked out a few - and asked for enlarged copies. The Soviet agents admitted defeat before Finnish prowess.
>>78297797LOL what were they blackmailing him with?
>>78298104Pictures of him with several women that were a bit short on clothing.
=== /cyb/ News:Some tech takes much longer time to arrive than first expected but are now being accelerated because of the pandemic:>The forklift truck drivers who never leave their deskshttps://www.bbc.com/news/business-54431056>The solution, he suggests, is to reduce the number of people working in those environments. Take forklift operators, for instance - with remote-control technology they can now work off-site, controlling their machines from afar.>"We have customers today where we are fully remotely operating those forklifts from remote locations," says Mr Katz, whose firm has equipped a string of new clients with these systems in recent months.How about the /sec/ part?>Mr Katz and Mr Shet both say their firms have thought about this scenario and add that their engineers have introduced various steps to make a cyber-attack harder. For example, by encrypting communications between teleoperator and vehicle, requiring authorisation of drivers and automatically shutting down vehicles should they lose access to a reliable communications signal.
>>78298594That was enough for attempted blackmail at the time? I thought at minimum it'd have to be a homosexual affair or some embarrassing fetish.
>>78299513It was a long time ago, when men were men.And that reminds me of the story of the Finnish test of manliness. It was Pekka's turn and there were three steps: first down a bottle of Finnish Koskenkorva, next kill a bear with his bare hands, and finally make love to a Finnish woman.So Pekka downs the bottle and staggers into the forest. And he is gone for hours. And then more hours. Until he finally staggers out of the forest, clothes shredded, bleeding from everywhere, asking "where is that woman I must throttle?"
>>78295114Another problem is that some insist on spreading the topic thin across several threads, see >>78296757
cyberpunk is so fucking cringe
does anyone know how I can find gigs doing basic web app pen testing? I want to get some extra income to supplement my code monkey work
>>78302934https://www.billdietrich.me/PenetrationTestingAndBugBountyHunting.htmlHere's a resource on bug bounty hunting I recommend looking through instead. Consider the formalities of the pentesting industry and then reconsider whether it will be realistic, as an individual, to gain enough trust from companies for this to be a viable income source. (If you are unfamiliar with the process, take a look at a PenTest+ certification study guide on libgen.)Under the assumption your code monkey work is web development, can you possibly pitch pentesting as a service you can provide to already existing clients who might not be aware of the formality of the process? People in the market for penetration testing either aren't looking for freelancers, or are legally incapable of hiring them unfortunately (this is something I've talked to a career adviser about).
>>78303191when doing bug bounties should I hide myself? If I'm going through official bug bounty programs will I have to fear legal repercussions of any kind?
>>78303298>should I hide myselfNot if you want to be paid? If you are going through official programs there are no potential repercussions, correct. And even more securely, usually you will be finding work or reporting vulnerabilities through a platform like these that act as an intermediary:https://www.hackerone.com/https://www.bugcrowd.com/
>>78302589And yet it is our reality. Also I don't think the vote in 2 weeks time will do anything to change this, no matter who wins.
>>78303550>ronald dump vs boe pedoOf course it won't. Other than corona-chan (which isn't even a government thing), how much have the feds actually changed your life in the past 4 (or even 8) years? I'm willing to bet not by much.
>>78303550>and yet it is our realityReality is cringier than cyberpunk
>>78275408That's a cool pic, have more?
>>78270294can you stfu already
Henlo frens, I would like to use libgen but I'm too paranoid to do it on my own computer.Is best bet to use a VM? Are there any free VMs out there?
Hello.Other than doing all your computing on full standalone inside a faraday cage, is it even possible to get around hardware backdoors like those in Intel ME or AMD's PSP? There was a thread a couple of days ago where some anon suggested getting an FX8350, since that is the last modern processor without said technologies. But it's still a moot point since every piece of hardware now comes with some similar closed-source OS operating on logic boards and chips. So there is basically no escape.
>>78288304what is this, this looks cool?
>>78305928WHy is he red
>>78305928Why are you like this?
>>78308194Perhaps because of >>78296656 ?
>>78270294based and /thread
>>78303983My life has not changed much but I hear the US Gini coefficient has improved. It is strange that it was the Trump administration that started levelling the playing field wrt. China.I use Linkedin a lot in my work and it is interesting to note that a lot of professionals in the US seem to be strongly pro Trump in the discussions below articles, especially those from The Economist. The reputation that only uneducated yokels vote Trump does not seem to hold water.In any case the incumbent tends to win a second period. >>78304029>Reality is cringier than cyberpunkThat is why we appreciate comfypunk around here.
Is Cybersecurity a good career to get into?
>>78280007Some jobs in US seem to require Comptia Sec+. Where i live they don't care about certs except if your applying for senior/managing position. Certs like CISM,CISSP and OSCP helps.
>>78311599Sure. It is demanding, quite intense at times when zero days hit the net. The upside is that it is rather safe from outsourcing.
If we are to review /sec/, what is going on on 4ch these days? The page refreshes invisibly and arrow back suggests at least two refreshes, more over time.
>>78305928Just get a cheap old computer with a lightweight linux distro.
>>78290026You might have told em about 4chant but that is not enough. Pic related.
>>78299338Would be cool with a vr headset and a 360 degree camera mounted on a cageless forklift.
I woke up today and my wifi was open, and under the default name. I had to log in and set the name and password. Guess I'm pretty lucky nobody else did that first. Is there anything I should be worried about?
>>78270125Are there any linux distros that do encrypted /boot (2nd stage bootloader/kernel/ramdisk etc.) natively in the installer, or does it have to be done manually?
Will CompTIA Security+ help me land my first job in the cyber security industry? I'm wondering if I should pay it out of my own pocket or just try my luck without it. 2nd year CS student, if it matters.
>>78314668Check all logs to see how this could have happened. Look up the make and see if there are known vulnerabilities in which case it is just a question of time before it once ore joins the botnet.Also do a full sweep of all attached units including cell phones. And do not delay.
>>78314922Where would I find the logs? And what do you mean by do a sweep? I've checked my network and only my recognized devices are on there if that's what you meant
>>78314992Many routers have logs. If an intrusion happened, it would probably be deleted. Do you have Linux or Windows computers? Both have extensive logs such as (attempted) logins. Check these. Were any computers rebooted at the same time your router was reset? And run a virus check and a root kit scan.
>>78315789I don't know how
>>78315789So where in Windows would I find the logs?
>>78315909Win10? Click start and type "event" and select "event viewer". Then explore the events.
Stagnationpunk is getting increasing coverage: >>>/sci/12252782https://www.youtube.com/watch?v=3r5erdsX6kE
>>78314703Why encrypt the boot? It doesn't have your data. Just use TPM or something so that your computer can't be tampered with.
>jerk off in the shower>right as I coom I think about getting admin access to the logging serveram I in too deep guys?
>>78317497>right as I coom I think about getting admin access to the logging server
So, I wanted to do a SSD full-disk encryption with Windows 10, but I found out that Veracrypt causes a great dip in random deep queue 4KB files write/read speeds.Thus, I'm considering on using an unencrypted Windows installation on the SSD with an encrypted container in my external HD drive. Then, I would run VMWare using VM files stored inside that container and I would do all my sensitive stuff in this VM.How safe is this solution?Does the hypervisor leak information to the host unencrypted ssd?
>>78296646this is making me cringe. it's hard to take this guy seriously.
If you don't think we live in a /cyb/ world:https://www.bbc.com/news/business-54636002
>>78317277>trusting TPMNot cyberpunk enough bro.
>>78314897It couldn't hurt, but it's relevant to IT and system administration work rather than penetration testing.
>>78320317Makes it harder for anyone who isn't Intel to fuck with your computer. That's pretty good.
>>78320427>Makes it harder for anyone who isn't Intel to fuck with your computer. That's pretty good.Assuming Intel doesn't perform favors for interested parties, yes.
>>78317794>I wanted to do a SSD full-disk encryption with Windows 10What's the point if you're using Windows?
>>78306058>So there is basically no escape.You could buy an old computer. Raptor Computing provides PowerPC machines with completely unlocked secure boot with configurable firmware, but they cost around $4,000 each.
>>78320531What's your threat model?
>>78321380>What's your threat model?The hardware manufacturer is hostile but too cheap to single anyone out.
>>78323050Hostile? In what way? To who? What's the motive?
>>78323137Please fuck off. In a *CYBERPUNK* thread, it is safe to assume that trusted computing is inherently unsafe and any reliance on trusted computing is a mistake. This includes TPM. If you want to construct a threat model that doesn't include Intel and whatever governments have them under thumb then you don't belong here.
>be me>be recent computer engineering graduate>want to cool cyber stuff>apply to dozens of entry level cyber jobs>???>no replyWhat do? I'm currently studying for my sec+ and net+. will this be enough? These job descriptions are asking for a full blown IT/engineering department
>>78270294every fucking time. Who the fuck cares? eat a bag of dicks
Just watched Robocop.Is the sequel worth watching?After reading reviews I don't think I want to watch the third one
Has anyone seen this?https://www.youtube.com/watch?v=le71yVPh4ukGuy reverse engineers scammers and hacks into their network. I'm surprised he doesn't have legal issues desu. Gets into their camera CCTV system etc. is a neat watch.
>>78270125Question 1What are the technical specifications of the 'advanced' security features on the Comcast Xfi gateway? I can't find a technical rundown on this. The most detailed shit I found is like https://forums.xfinity.com/t5/Internet/ANSWERED-What-is-Xfinity-xFi-Advanced-Security-and-how-does/ta-p/3180099Here are the features I understand it has, and would like more info on:>Smart access control where you can do stuff like pause wifi to devices>Control from an app (what features does this have?)>Blocking malicious/suspicious traffic>Built in 'malicious website protection' probably via DNS filterif anyone can tell me more about these devices, I would like to know. Are all routers going to become this advanced? I'm totally not considering hacking one...Question 2After reviewing the differences between Linux and SELinux, I would like to know a little about the kernels. Particularly, I'm interested in Android, which is built on SELinux. >what are you trying to do?I'm trying to priv escalate on an older Android which has no official way to root or unlock bootloader.Let's say I use the uname -a command in UserLAND app on my phone, and find out my kernel version is, for instance, 3.18.22Now, I google the vulnerabilities of this kernel: https://www.cvedetails.com/vulnerability-list/vendor_id-33/product_id-47/version_id-194139/Linux-Linux-Kernel-3.18.22.html>What's your question?Would the same exploit work, or is a Linux kernel version X not the same as the same kernel version X on an SELinux system?
>>78270294>>78270440>>78305459you guys do realize that the cyberpunk LARPers here are actually necessary in order to allow the actual hackermen to post here without getting shoah'd
>>78323519>review and improve and rewrite resume>get certs if you can/are willing>apply to more jobs>get a github page or somethingA combination of the above is guaranteed to work anon>>78324184kek
>>78324184It was neat to watch indeed
>>78324488a blog might help but if you ask me, you need to show off your raw talent by creating programs. You may at that point create a blog where you talk about your program, but I'd say you should actually create something first.>What have I done?I've found ways to root unrootable phones, built my own custom operating system, and I can hack nearly anything. Yet my hardware job sucks. But I'm patient and I know my resume will improve once I finish my certifications, not that I need them.
>>78324604what about CTF writeups, vulnhub writeups, and bug bounty writeups?
>>78312067Higher ed is getting so pozzed they prefer certs
>>78324670Those are great but as far as a resume goes, I'd imagine the key is how you present it. If I was your employer I'd be interested, not that I know anything because I actually work with biomedical hardware and I'm essentially a slave
Should i do the GIAC undergrad?
>>78312067>was studying for sec+ during lock down>all ready to test>only tests were online(using my computer)>no thanks>have to wait until exam center open up>loose motivation
>>78324968>Go online.>Buy 2nd hand laptop for cheap. >Write exam. >sell laptop>????>PROFIT!The modern world is cruel in her mercy. Only through her mercy is your stupid ass still alive. Through her mercy, she is cruel in inflicting us with your continued fucktard presence. A year from now on your timeline you will be here making those annoying threads>i spent 4 years on CS >i spent 2 years learning cybersec>no certs>wheres mah jerb>6 gorillion interviews>i wasted my time>i know nothing>halp anon>no interviews>haaalp
>>78287734>https://reinchan.org/I don't speak this language but you adding I2P is awesome.
>/cyb/ wiki>always downJust fucking use https://wiki.installgentoo.com/ fuckheads
what do you think about Bug Bounty?
>>78325801>JustNeeds user registration.
wich are best entry level certifications to get my first job in cybsec it
newfag here, is this the thread for torrenting safety related questions?
=== /sec/ News:Interesting article on tyosquatting:>Further analysis of PyPI typosquattinghttps://lwn.net/Articles/834078/>On the IQT blog, John Speed Meyers and Bentz Tozer recently posted some analysis they had done to quantify PyPI typosquatting attacks and to categorize them. They started by looking at the examples of actual attacks against PyPI users from 2017 to 2020; they found 40 separate instances over that time span. The criteria used were that the package had a name similar to another in PyPI, contained malware, and was identified and removed from the repository.
>>78290026Do glowies know you post on chans? Do they have a record of your posts?
>>78323519Net+ ain't bad but it's mostly stuff you should know after going through college.
>>78327147No it's not. Why would college teach you It?
>>78324184> Fucking with poor people for your own amusement and monetary gainI hate the scammer abuse channels more than actual scammers It's gross and they have a ' dance you poor monkey' aspect to them I can't ignore
>>78326147Use a throwaway email retard
>>78327159idk I learned like 80% of it in college in networking classes.
>>78327164>Fucking with poor people for your own monetary gainYou realize that's what the scammers that get shut down by these channels were doing, right? They're typically not scamming 1%ers.
>>78327355I dunno. I don't like that channel
>>78270294Actually it is.In a cyberpunk world due to rampant and uncontrolled technological progression, resulting in extremely advanced tech, hacking and acquiring technology is one of the central themes. Smart technologies naturally invite hackers and hacking is another form of warfare naturally complemented by cybersecurity for defense.Adding in the low-tech (relative to the given worlds state of the art) and low-life themes brings this out even more, showing that hacking/cybsec is indeed one of the central themes of cyberpunk.You don't want a body implant getting hacked, choomba .
>>78327733so if i cant into technology at all i cant be /cyb/?
>>78327742Not at all... while hacking is a major theme in cyberpunk due to the way the world is built, it's not the only theme and not even the most important one. It's just one, but important, part of the world. You can't disregard it, but you don't have to be the tech guy. There are fixers, dealers, whatever in any cyberpunk fiction and there are a lot of cool cyberpunk shit you can do without deep tech knowledge.Even irl todays internet is getting bombarded by APTs (Advanced Persistent Threat aka intelligence services and similar) left and right hacking industrial control systems and government systems. Search for stuxnet and duqu.
>>78275408Set it up so you can use it as a proxy with a killswitch. Make sure to not do anything that warrants invesitgation by the admin. If it has a large uptime then do not make any persistent modifications just run everything from RAM so a reset will clear you tracks.
>>78327194I took a networking class my last semester, I have yet to start the net+, currently focusing on sec+.
>>78327742If you are into /cyb/ you keep /sec/ and tech in mind. The reverse is not always the case. We all live in a /cyb/ world but not everyone is aware of it.
horrible thread full of poser faggots and thinly veiled /pol/ posting, fuck off to your doomer general on /v/ or wherever it is you people congregate
>>78327164They're scamming vulnerable old and disabled people out of their money. That's evil abusive behavior, doesn't matter if you're poor or not. They deserve more than being humiliated on YouTube but Indian law enforcement won't punish them.
>>78329184>thinly veiled /pol/ postingWelcome to 4chan, roody-poo candy-ass.
cyberpunk discussion belongs in /v/
>>78327164They used to shoot horse thieves. How the world has changed.
what language should I learn for /sec/? not programming language but normal language
maybe russian or chinese
>>78330346Chinese, Hebrew, and Russian would be the big three. Could probably have an interesting time with Farsi or Korean, as well.
>>78330518>HebrewIs this serious or is this a meme?
>>78330518not japanese? are you high?How fucking dare you sir.
>>78330662kill yourself weeb
>>783244321. No they're not.2. There are no hackermen posting here.
>>78330346Russian is important. It used to be taught in many NATO countries during the cold war and after 911 the focus switched to Arabic, Farsi and Urdu. Lately Russian is again popular. This combination could give you a job in alphabet soup agencies.>>78330362Chinese too, yes.>>78330518Why Hebrew?
>>78330644>>78330905Israel is the third most aggressive espionage threat to the US. >A newly revealed NSA document highlights and corroborates allegations carried by Newsweek that Israel aggressively spies on the US,http://archive.md/z0iIwhttps://www.timesofisrael.com/new-nsa-document-highlights-israeli-espionage-in-us/>"The Israelis are extraordinarily good [Signals Intelligence] partners for us," the NSA observed, referencing joint electronic spying programs against foreign targets, "but on the other [hand], they target us to learn our positions on Middle East problems." It added that a CIA-led National Intelligence Estimate on cyberthreats in 2013 "ranked Israel the third most aggressive intelligence service against the U.S.," behind only China and Russia.https://archive.md/kNbMhhttp://www.newsweek.com/mostly-good-week-israel-us-spying-controversy-251261
>>78331028North Korea has been causing trouble. Some even post here: >>78330662
>>78323519What job do you want?
What is the best tool for encrypting individual files and folders on Windows 10? What about Linux?Now, can I upload those encrypted files to my cloud storage or do I need another type of encryption that the cloud accepts or something like that? I know there's some kind of synchronized encryption thing with the cloud but that's not really what I'm looking for here
>>78332209by the cloud I mean my Google Drive/Mega btw
>>78331028North Korea does some entertaining things sometimes and South Korea has a large tech industry.
>>78272577Do it illegally.I was driving for 7 years before I got a license or insurance or even a car registered in my name.Just make sure it's some shit bucket so if you get caught it getting impounded is no problem.Also do not register the fucking thing or else if it does get impounded your name is attached to it.I'd also suggest back roads and memorizing police routes so it's easier to avoid detection.A motorcycle should be way easier to ride illegally without being caught.
>>78332209gpg, 7zip, or ccrypt. It should be safe to upload them to a cloud server, yes.
>>78304123not of that but I'll check the same folder
doin some hackin
>>78333437I do that when it is getting cold.
>>78330518What version of Hebrew is spoken nowadays? Modern Hebrew is a synthetic language right?
>>78333626>What version of Hebrew is spoken nowadays? Modern HebrewYes.>Modern Hebrew is a synthetic language right?Sort of. After getting replaced with Aramaic ithobbled along over the years in several different places and contexts as a liturgical or pidgin language before getting synthesized into something more standardized and widely accepted. I don't know a ton about this but that's my basic understanding from the last time I read up on it.
>>78332956Lol i bought one like that for $1 couple months back at the scrapper for lulz. Completely Forgot about it. Any fun stuff i can do with an ancient satphone?>no personnel within 5m of rear of device
>>78334352>ancient satphonePictures?BTW trying to call out will locate you, immediately.
Do I need to worry about auto updating a Tails live USB not being safe? I know this is/was/can be an issue with some auto updaters, like Electrum (bitcoin wallet)
Hello chaps - have an interview next week for a security researcher position despite spending my entire career to date as a FS dev who did fuck all security.Any advice or tips on what to look up to try and impress them in the interview?
>>78332209Holy crap Louis, it’s satania! Quick, where’s the iPhone so we can take a picture.
>>78334584Generally for updating, check if there is a real reason for the update as opposed to vague mention of "improvement" or configurations not relevant to you. I usually download immediately - and wait. Give it enough time for others to report obvious mistakes. Then download AGAIN, and compare the two versions and see if anyone used the window of opportunities for the update to sneak in a backdoored version. Only then is it time to install.
HOW DO I HACK
>>78324184I love these but it's hard for me to watch because I either get angry, or I get devious and consider installing another voice changer and firing up my old VMs. Used to fuck with these guys hard, best one was when I changed my voice to sound like a little girl and had goatse wallpaper and was watching Gay Sex With Hats On. Told him that my daddy liked these kinds of movies. The scammer pulled up a Justin Bieber music video and said little girls should be watching things like that instead, then dropped the headset, slapped my leg hard twice, switched to deep male voice, and started bitching the scammer out about talking to MY LITTLE GIRL, making it absolutely as creepy as possible. Probably scarred him for life.
>>78327902how would you run everything from ram on a router?
>>78337042First get a good axe: >>78333508Then http://www.catb.org/~esr/faqs/hacker-howto.html
>>78340671Apple IIc, great computer. Strange to see it in this setting.
>>78293459Not everyone's some spoiled rich kid who just treats /cyb/ as an autistic hobby
>>78337165Yeah man you're sooo funny
So we live in a /cyb/ world and we have no less than 4 concurrent /cyb/ threads going in addition to this:>>78339652 >>78317180 >>78341998 >>78340295So how do we keep the traffic here rather than split across 5 threads plis other imageboards?
>>78342242>/g/78339652>Automated Voter Fraud Exploits for the 2020 Election >This thread doesn't exist anymorehttps://archive.rebeccablacktech.com/g/thread/78339652>>>/pol/284217223Interesting. This all sounds /g/ - Technology related to me.
>>78342582Agreed. And /cyb/ is very much about tech in society. The loser in this election will forever suspect foreign interference in the election. With the latest revelations many will suspect it was decisive in the last election. An all because someone never too /sec/ seriously.And who knows what happened during Brexit voting.BTW I see media i scrambling to note "advanced analysis" shows Trump can win, someone is hedging their bets.
Doing a CTF. What kind of file/encoding could pic related be? binwalk/CyberChef doesn't give anything but I guess it must be something. Any ideas?
>>78344358RGB suggests an image of sorts, the packed word indicates interleaving, so I am guessing video with optionally sound.Tried the 'file' utility?
>>78344569Yes, it gives nothing. Seems there is a corrupted PSD file at the end
>>78344622The "tryharder" is perhaps a hint. Tried running 'strings' against the file to extract all text?
>>78345437Yes. Some random image analyze online said it might be DICOM file, and after some tweaking I got a file out by it's such a glownigger format that I don't know if it's a valid file (the parser didn't complain - it did though when I carved the file wrong) or thatit's valid and I have yet to used the "right" DICOM viewer (some viewers can't even open a sample file I downloaded)
>>78345801It was not a valid file :(
>>78346816What about the head of the file, could it be a renamed tar file?
Any idea where one could get the Training Material for stuff like GXPN? I don't really can pay like 8k.
>>78324432>you guys do realizeStarting a sentence with these four words is just pretentious
>>78348170The last word suggests English is not his first language.
We are not out of dystopia yet:>Apple Lobbied US Congress on Uighur Slave Labor Bills (theinformation.com)https://apple.slashdot.org/story/20/10/23/1447237/apple-lobbied-us-congress-on-uighur-slave-labor-bills>Congressional disclosure reports show that Fierce Government Relations lobbied for Apple on the Uyghur Forced Labor Prevention Act and other bills aimed at pressuring U.S. companies to ensure that their supply chains do not depend on companies that use slave labor, particularly from a region called Xinjiang where many Uighur live. Apple has previously been criticized for working conditions within its supply chain. More recently, activists have urged Apple, other U.S. companies to cut their ties to suppliers that allegedly use forced labor from the Uighurs, a Muslim minority in China. The Chinese government has been accused of forcing Uyghur's to work under oppressive working conditions and other human rights violations.
>>78348281It's an increasingly commonly used word thanks to /pol/.
>>78349286We have had several anons from there, one came here to ask for help in a /sec/ quiz for getting into relevant work for his national service. I guess that is the kind of posting that makes people in alphabet agencies slumming it here, sitting upright and take notice.
>>78348281>claims I don't know what pretentious means>but yet this fag doesn't actually understand it to refute me.Typical, spewing shit without having any understanding.
Cybersecurity gurus, is this accurate for people looking for entry-level jobs?
>>78351565He seems to compensate heavily, probably had a bad experience with a professor.
>>78351682That is a lot later than I had expected, 30 years after Neuromancer.
The QAnon takedown continues, with Patreon in on the game:https://news.slashdot.org/story/20/10/23/2024245/patreon-is-banning-qanon-joining-facebook-youtube-and-othersAt this point it reads like a conspiracy attacking another conspiracy. Meta-conspiracy?
>>78352262that's child's play. Krebs is trying to cancel them from the internet
>>78344622Anon, you must simply Try Harder™
Do any of you COOL bros want to work on a little project? I've been a cyberfag for a while. Got a little experience under the belt but I'm still not crazy good.I'm working on a fork of kAFL tailored towards Windows. kAFL is cool but it absolutely sucks to get it up and running. It's not maintained either. I'm working on a variant which makes use of a UEFI bootkit to hook driver loading in Windows. Hooking driver loading means we can also hook the drivers themselves. Say you've got a function you can pass (semi-)arbitary data to. You no longer have to get the perfet setup every time. Hook places a payload, shit happens (hopefully causing a crash or similar), then another hook catches the end of the function assuming system hasn't crashed. System gets reloaded and fuzzing continues. More advanced hooks eliminate the need for full system reboot and run through iterations pretty quick.Looking for some peeps to work on this with.
>>78275408what a load of SHIT
>>78334584ppl with wasted lives.
>>78275408>>78352900Plugging my own advert but...Most routers run Linux. If you have a shell, you can run your own programs and examine the internal network. Maybe they've got some data you're after. Maybe another machine you can compromise. You could set up a VPN to route your internet traffic through it.Most routers aren't going to have persistent storage. A reboot will remove you. If you can hack a fuckload of routers, get the hardware yourself. Get a miner running on it. Maybe 1k routers will mine you 1 cent for the next year. You're limited only by imagination.
>>78352900Plugging myself again.I found a remote exploit for a serial-ethernet adapter. I can firmware mod it so I don't go away either. There's only ~900 consistently online but it's kinda silly. Same shit I said about routers applies.
>>78352900Can remotely exploit a shit NAS too. The older models don't have flash locked down. There's always a way though. Plus temp access to any NAS is neato.I'm not trying to drop my portfolio but it'd be cool to talk with and work on something with you fellas. My last group fell apart due to some combination of substance abuse and a narc. Just want to get super into a project with some friends again. Miss that shit.
>>78340859what a load of horseshit. that was written by FOSS neckbeards, not hackers. get with the times boomer
>>78353284If you're making a botnet and doing blackhat research then nah, but if you're doing legal research and testing on authorized hardware then I'll bite. I'm just getting started with learning exploit frameworks so you may not even want my help though.
>>78332120cyber security engineer/analyst
>>78353515I'm not making a botnet. If I was, I wouldn't talk about it here. I've done some sketchy shit in the past and learned that secrets belong to you and you alone. Everyone has a friend they will tell. That's beside the point. I like making tools for fun. I want to hack Xbox One to run unsigned code at the host level and have a very solid lead. Degenerate? No. Immoral? Questionable. I'm in it for the money to be made selling to legitimate brokers like ZDI and Zerodium. How they use it or sell to gov is up to them.
>>78353599Sounds legit. Contact info?
>>78353668Hit me on discord. 7aDsjANot going to link personal github here. If you don't have discord I'm sry. Pretty much just talk on github and discord.
I thought the cyberpunk dystopia was supposed to be cool
did someone say cyber sec?oooh god im gonna... HAAAACK>>78340671my forearms hurt just looking at thisbeautiful computer though
>>78331008anons should i go to >isreal to work cybersec? i've heard the money is pretty good, the experience is what worries me