Introductory cybersecurity: [ pastebin.com/z2fisXBd ] Advanced cybersecurity: [ UNDER CONSTRUCTION ]
Cybersecurity armory (Software and other tools): [ UNDER CONSTRUCTION ] Cybersecurity resources (Blogs, services, etc.): [ UNDER CONSTRUCTION ] Cybersecurity practice (CTF, Wargames, etc.): [ pastebin.com/vsXG3uX2 ]
So I have an interview coming up and they want to give me two tests. CSOA technical exam and CDA exam.
I can't find much about either of them online. How would one prepare?
Cameron Phillips
Always link to the previous thread, OP. Just copy the digits at the end of the URL at the top of the browser and put two > in front of it. Also, you need to change the date from 20 June 2019 to something else or just get rid of it. to save character space.
The FBI has an image of the hard drives, but Georgia doesn't and doesn't want one. Looks like a cover up of election tampering. Maybe Georgia altered their own votes?
Carter Allen
protect from what
Andrew Sanders
Best VPN right now in your opinion, money isn't an issue. I'll use referral for whoever I choose.
Leo Edwards
What's /cyb/'s opinion on tech wear? Does it have merit or is it just LARPer garbage?
anyone have the deepnude source code? can't find it anywhere.
David Jackson
Is webdev knowledge crucial for cybsec or can I jump in with little programming skill?
Joshua Sullivan
Cool af and underrated also go back to /fa/
Ethan Morales
gay af
Jack Sanchez
sadly yes, most of the cybersecurity stuff that you can get paid for is either networking stuff or webdev shit
John Lopez
Depends on what kind of cybersec. Understanding OWASP is crucial for anyone serious about cybersec. You should probably know how to write in at least one scripting language, mostly python/bash/powershell.
Ethan Ward
sounds good, Ill probably just end up learning webdev and cybsec at the same time
Robert Price
this is /cyb/ /sec/ not /hav/ /sex/
please leave
Josiah Butler
Stupid. No man over 25 is going to be caught wearing this shit.
>So I see you're interested in tech >But may I asked why you're dressed like a ninja?
Michael Thompson
If you have bridge connection only you are already kind of protected. If you have NAT, just setup a decent password and track all the connected devices regularly.
Ryan Baker
page 9 lads
Cameron Ward
As a bike delivery man
What the fuxk are you putting in those pockets
Are you too good for internal pockets
Ffs
I digress
Personally I wear a hat. It gives me q certain identity I can use to throw away if I dont wamt to be that person
Xavier Garcia
can someone redpill me on nmap. What have you done with it?
Adam Gonzalez
Have you tried shotgun
John Perez
check whether my firewall-fu worked
t.sysadmin
Ethan Gray
trips let you know, pleb
Ryan Carter
fuck off fed
Cameron Torres
Wouldn't download the files outside of a VM, but there's some good stuff
So, scan the PDF for javascript and execute it in a controlled environment and/or compare it to malware database? Would be easier just to scan and rip all javascript altogether.
Analyzing files on a hex editor seems a common way to do it. Besides that are two python scripts.
Two sad python scripts for something so essential as PDF analysis. Damn.
Jaxson Wood
if you're really concerned just turn off javascript in your pdf reader and open the file inside a linux virtual machine. pdf malware doesn't target linux.
Jaxson Rivera
Plot twist: I was using Linux and Zathura PDF viewer all along.
The bots are coming. === /cyb/ News: >Effect Of Robotics On Employment electronicsweekly.com/blogs/mannerisms/dilemmas/effect-robotics-employment-2019-07/ >The Boston Consulting Group carried out a survey of executives and managers from 1,314 global companies earlier this year to ask what the effect of robotics would be on employment.
It seems not everyone grasps the consequences of what is to come. That or they plan to retire before it hits the fan.
James White
A lot of his designs are very inspired by Brutalism, which always gives me that dystopian future vibe, as well as being a part of the whole dark experimental Japanese wave (looking at designers like Yohji Yamamoto and Rei Kawakubo). Most of Ricks pieces gives the feeling of "Something familiar but twisted", like it's trying to portray something futuristic without being straight up xXxT3CH W3AR N1NJAxXx
we are all neckbeards anyway, what use is fashion.
Julian Powell
i ran it once, it was pretty cool and made me feel like the matrix
Ian Moore
>What's /cyb/'s opinion on tech wear? Tech wear that really does provide benefit through real tech would be interesting. It would also be something new. We had a discussion in last thread on helmets that provide a clear view and protection in extremely cold weather: Add a HUD, night vision/thermal imaging etc. and we are getting somewhere.
Inteltechniques took off all the osint tools indefinitely because of legal action against the site and doesn't plan to reup them. Is there any alternative?
Pls help
Henry Perez
Only is it is detachable.
Jose Gomez
This fashion I can dig. >punk Just as I like it.
Hang on, you are making it.
Lincoln Peterson
is Duplicity a good enough solution for easy and automated encrypted backups?
What is the future of intelligence? After all, a lot of it will be needed to bring further progress, yet now we have the reverse Flynn effect: >BBC - Future - Has humanity reached ‘peak intelligence’? bbc.com/future/story/20190709-has-humanity-reached-peak-intelligence >Whatever the cause of the Flynn effect, there is evidence that we may have already reached the end of this era – with the rise in IQs stalling and even reversing. If you look at Finland, Norway and Denmark, for instance, the turning point appears to have occurred in the mid-90s, after which average IQs dropped by around 0.2 points a year. That would amount to a seven-point difference between generations.
Evan Ward
Those are insanely homoerotic. If I saw you wearing those I would absolutely publicly lynch you.
If you wore that in my town you'd 100% absolutely get stopped and talked to by the police, you look like a fucking cat burglar ffs.
okay, 'partisan-core' is actually kinda cool, but to think someone spent time inventing this genre is such a ridiculous thought. Partisan might be the only acceptable style out of all of these to wear because I could see some aspects of the clothing to be tactically advantageous without going complete overkill on tacti-coolness like 'techwear'. Still that being said I would try to pull it off as casually as possible your you'll legit be profiled as a neo-nazi, school shooter or some kinda right-wing militia member.
Easton Bennett
>Those are insanely homoerotic. How do you make that connection??
Sebastian Myers
shut the fuck up or I'll come over there and violently sodomize your ahole for 2-3 hours.
Joseph Thomas
The scope of reliance of Chinese tech is being felt. === /sec/ News: >Banned Chinese Security Cameras Are Almost Impossible To Remove (bloomberg.com) yro.slashdot.org/story/19/07/10/2134208/banned-chinese-security-cameras-are-almost-impossible-to-remove >U.S. federal agencies have five weeks to rip out Chinese-made surveillance cameras in order to comply with a ban imposed by Congress last year in an effort to thwart the threat of spying from Beijing. But thousands of the devices are still in place and chances are most won't be removed before the Aug. 13 deadline. A complex web of supply chain logistics and licensing agreements make it almost impossible to know whether a security camera is actually made in China or contains components that would violate U.S. rules.
>Despite the looming deadline to satisfy the NDAA, at least 1,700 Hikvision and Dahua cameras are still operating in places where they've been banned, according to San Jose, California-based Forescout Technologies, which has been hired by some federal agencies to determine what systems are running on their networks. The actual number is likely much higher, said Katherine Gronberg, vice president of government affairs at Forescout, because only a small percentage of government offices actually know what cameras they're operating. The agencies that use software to track devices connected to their networks should be able to comply with the law and remove the cameras in time, Gronberg said. "The real issue is for organizations that don't have the tools in place to detect the banned devices," she added.
Have you removed your Chinese spy cam yet?
Luis Gray
What VPN /cyb/ uses? And what is generally recognized as the best security-oriented VPN?
Colton Wilson
>security-oriented VPN Isn't that a contradiction in terms?
Adrian Howard
us government put kaspersky antivirus on their systems. KASPERSKY. maybe you don't need to be hackerman to get access to alien files.
Matthew Edwards
Does anyone know if Cyberia Club is dead? Lainbot isn't adding me.
David Sullivan
What's the most /cyb/ way to kill yourself? Overdose on pills and alcohol? Suicide by cop?
get arrested on a federal rico charge and hope pound me in the ass prison is as fun as it sounds?
Ethan Campbell
kinda hyped for the advanced cyber security
Joseph Perez
>Cyberia Club I get a lot of different hits on Google. Exactly which one did you have in mind?
Gabriel Barnes
I don't know if it's okay to ask cyber sec questions here, or if this is considered on subject, but I have some dnssec / dns over https - dnscrypt questions. I posted it in /sqt/, but the post is here.
Cooper Walker
Security is not just about defending. Some times the situation calls for a counter strike. >The Most Clever 'Zip Bomb' Ever Made Explodes a 46MB File To 4.5 Petabytes (vice.com) hardware.slashdot.org/story/19/07/10/2341251/the-most-clever-zip-bomb-ever-made-explodes-a-46mb-file-to-45-petabytes >Programmer and engineer David Fifield has unveiled a brand-new Zip bomb that explodes a 46-megabyte file to 4.5 petabytes of data. Fifield's new type of "Zip bomb" or "compression bomb" is particularly novel because he "figured out how to 'overlap' files inside of a Zip archive, allowing for compression rates far beyond those of a traditional archive," reports Motherboard.
I fucking love Nmap. Nmap is probably the first enumeration program you should get good with. It's absolutely indispensable. Start with something small, like: nmap -p 22 -A 192.168.1.0/24
That will let you see all the hosts with port 22 open in the last octet, which is usually your home network or lan. Then look up vulnerabilities for the versions of SSH that it gives you and bam, pwned. I use Nmap almost daily. It's amazing for so many things. It can guess services running on ports, guess the operating system that's running on the hosts, check if your firewalls work, do simple ping scans, and a lot more. Plus the scripts that you can run with it are very neat and useful. It teaches you a lot about network architecture as well and can help you build a great conceptual model of what networks look like. I highly recommend it for attack surface reduction on the blue team and reconnaissance on the red team. t. I work in cybersec
do you ever grab pcaps of nmap scans to see what it's actually doing with the packets?
Nathan Williams
I did once or twice. With the -A flag it's more interesting. But for the most part I don't remember much. First it does an ICMP echo (unless you have the -Pn flag) and then depending on your flags it'll do a lot of other shit. I'd advise you to give it a shot on your own, Wireshark and Nmap are all free and really easy to setup and get going with
Robert Foster
use masscan, it does exactly what you need but is infinitely faster than nmap. you can then pipe its output to l33t h4x script or whatever
Hudson White
>This is an Internet-scale port scanner. It can scan the entire Internet in under 6 minutes, transmitting 10 million packets per second, from a single machine. That's wild, sounds like you could dos stuff with it. Must be something about the async scanning shit. Does it do anything different from Nmap?
Be the short circuit that fries a megacorp HQ / military base / major police department or other big government building. Be sure to scream "HACK THE GIBSON! HACK THE PLANET!" while doing so.
restic is the new hotness, oldanon. you still use perl instead of python?
Jeremiah Murphy
Post all the YouTube channels you follow beside hak5 and null bytes. I need more video material, please fucking respond
Owen Clark
Hackersploit Computerphile (highly recommend) Understanding computers Power cert videos Professor messer System engineer Steven Marcus LiveOverflow Yusuke Endoh (also highly recommend) tutoriaLinux
Jason Perez
Just finished Count Zero last night. Torn on how I feel about it; I like Bobby Newmark as one of the main protagonists because he's not just some innate prodigy who saves the day, but it feels like the story was more formulaic and the conclusion is more arbitrary.
You should read more user. Illiteracy is never in vogue.
Christopher Cooper
Perhaps it suffers from being in the middle of a trilogy. Mona Lisa Overdrive is next. recommended.
Jayden Ward
I prefer non-fiction. Have you read Allen Dulles ghostwritten classic?
Caleb Gray
This film was more sex than hacking. Still about anonymity and privacy. World was a damn nightmare and everyone acted like it was normal, not sure if was the actors fault tho.
You could fit a lot of kit inside that thing. He's a twig and looks like a tree.
Cameron Hughes
I have never heard of these, what can you tell?
Connor Miller
I'm catching up on more than one front, yesterday it was tlp over laptop mode tools, today it's restic over duplicity. at least it makes me look forward to tomorrow thank you for the info user
The main point of a VPN is to remotely connect yourself to a different network so you can access that networks resources. The encryption part is just a bonus. These vpn services really aren’t that great and contributing to people not understanding what vpn is or how it works.
Nord and PIA are literally the exact same thing and it’s onky a worthwhile purchase if you’re going to use their SOCKS5 to be a forward proxy for your torrent client. But then your ISP will see that you’re still browsing pirate sites... just not which files are being moved...
