In /hmg/ we discuss pentesting, ctfs, exploits, and general being a hackerman.
Resources:
VM/CTFs:
overthewire.org
>entry level stuff
vulnhub.com
>boot to root
hackthebox.eu
>super secret club
Tools:
kali.org
>just werks
metasploit.com
>scriptkiddie starting point and swiss army knife
Tutorials/Guides:
abatchy.com
>From zero to OSCP-hero rough outline
youtube.com
>IppSec, video guides for retired HTB VMs.
Certs:
eccouncil.org
>CEH, only looks good a resume to non-technical in HR
offensive-security.com
>OSCP, the big dick swinging exam, 24 hours to own 5 machines and a further 24 hours to write up a report detailing your methods.
Previous thread:
/hmg/ - Hackerman general
What, how do I get cursor blur on windows/linux?
Fuck OSCP
The big dick swinging cert is CISSP
isc2.org
You gotta take an oath to use your powers for good. You'll get 6 figure move in offers from casinos in Vegas the same day.
discord for all leet gamers discord.gg
>using metasploit in 2k77
Love the aesthetic.
Lmao just post in /sec/ and stop spamming the board with your shitty general that always dies in 20 posts. I'm sure they'll help you write an FAQ or something.
>discord
I was checking to see if there were any native methods and I came upon this plebbit post on the apple sub and this guy says
>Oh god why would you want this? Blurring, acceleration, and anti-aliasing all the time would be a pain in your computer's butt all day every day.
Kek Apple can't handle anti aliasing+motion blur
All the faggots in /sec/ are just circlejerking over cyberpunk images and games.
This, there's little to no /sec/ content, above asking what VPN is best.
I hope you got the steamed hams module.
help me get invite to hackthebox, i checked all source code already, and there is no password
Literally why aren't you posting this in the OP
magnet:?xt=urn:btih:f91feb6d2ea93f1c3c03b6be52051c2df72da1b7&dn=CERTCOLLECTION%20-%20BASELINE%20-%20SANS%20%26%20Offensive-Security&tr=udp%3a%2f%2fpublic.popcorn-tracker.org%3a6969&tr=udp%3a%2f%2ftracker.coppersurfer.tk%3a6969&tr=udp%3a%2f%2ftracker.leechers-paradise.org%3a6969&tr=udp%3a%2f%2fexplodie.org%3a6969&tr=udp%3a%2f%2ftracker.zer0day.to%3a1337
Full of SANS and OSCP shit, 80 gigs.
Because I got spooked by torrents, bro:
>iknowwhatyoudownload.com
Learn to use a VPN.
>literally nothing listed for me
I'm too cheap to pay for one and using a free one is basically retarded.
You have a spoofed IP in the browser.
Shit website.
Which one of you buggers went and added the huge anime collections to this?
Very rude.
We're watching you dastardly otaku; download more Meido in Abisu, it's really good.
I meant specifically the huge ones, I wanted to keep seeding them since there's so few on them but now I'm not sure if I should.
Also I've heard that it's good, but I'm a bit strapped on disk space at the moment, (betcha can't guess why) so it will have to wait.
Oops forgot it.
Just use some method to obfuscate your IP, friend, seeding is divine work.
>have a 40-character password that just so happens to have the word "password" in it to make it harder to crack.
>most websites tell me it's unsafe to use
I always add "password" to the dictionary when performing a crack.
Y'know "just in case".
What's a good way to do it?
I searched and apparently i2p has a system for it.
Alternatively, how bad would I be if I bullied the tor network with torrents?
Bad, don't do that, it'll just annoy everyone.
Just use a shitty proxy, it isn't like you're doing anything illegal (apart from breaking copyright laws).
I've got Sec+ and it's getting ready to expire next year. Any good study material for CISSP? Or should I stick to OSCP?
>willfully working for casinos, the most thorough collectors and purveyors of data in the private sector
they're only surpassed by zuccbot's facebook. they'll hire you, sell your data to the data merchants, then slash your benefits based on what they know about your lifestyle outside the workplace.
Bump.
What is everyone working on?
has anyone hacked any actually sites? what vulns did you find/use?
Hello, HollowPoint.
Hey dude.
(shhhh dont use my username, i dont wanna get DOXED)
I want to create wallhacks for shitty android shooters so I can hear chinks and pajeets cry, how I go about this? Should I intercept graphics data? Just finding memory values? Help me hackermens
Oh shit, sorry bro!
kek
I just dumped about 250 2016-2018 emails off some shitty sql injectable site if anyone wants them? (for research purposes, of course)
Woo yeah, I love leaks!
So you didn't have to kelogger their sysadmin for access to the z/OS mainframe?
mega.nz
here you go, senpai
nah, i didnt keylog a z/OS mainframe
I added some old 2008 emails in too, that i got from another site. I doubt the are still active though.
What are you going to phish for?
>What are you going to phish for?
Totally legal and respectable research.
not him but I'd just like to see if I could even run a successful phishing campaign
I have a book with some decent pointers on running a phising campaign.
....ok
setoolkit my friend, and hope for the best.
What projects are you guys working on, of course in larping terms.
I'm currently busy trying to hack the Gibson.