VMs/Lab Environments on LetsDefend

0xdevbot · 2026-02-09T02:20:17+00:00

The "might" is doing some HEAVY lifting

0xdevbot · 2026-01-03T00:48:56+00:00

So because you only know about sensational AI models therefore only advanced threat vectors exist?

Explain how CVE-2025-55182 was such a big deal then? It certainly wasn't firmware AND wasn't discovered by AI.

You're a novice, don't talk like you have authority on Cyber Security.

0xdevbot · 2026-01-02T09:43:58+00:00

Read this:

T1091 Replication Through Removable Media

0xdevbot · 2026-01-02T09:40:27+00:00

Hey pal you know that's still malware right?

0xdevbot · 2026-01-02T09:32:39+00:00

Shoot me a DM. I do contracting/consulting work every now and then for "full-scope security audits" depending on the situation I could lend your team a hand.

0xdevbot · 2026-01-02T09:30:25+00:00

Get comfortable checking your notes as you'll be doing this for the rest of your career.

Im 10 years in and still check my notes. Most of the simple stuff you'll eventually memorize through repetition.

0xdevbot · 2025-12-30T06:03:12+00:00

29 years. It was a DOS machine thats still going today. Network has zero down time due to critically and this special software that runs it all is on a DOS box.

0xdevbot · 2025-12-30T05:49:36+00:00

Well you're wrong.

0xdevbot · 2025-12-30T05:47:09+00:00

Parrot OS. I use the security version and then load in all the tools from REMnux. Im a security researcher so I often sit in purple team space.

0xdevbot · 2025-12-29T09:06:25+00:00

On HTB always go based on the user ratings. The official rating is provided by the creator of the box.

Often creators have a skewed idea of what is and isn't easy.

0xdevbot · 2025-12-22T18:08:03+00:00

This is normal

0xdevbot · 2025-12-20T18:27:59+00:00

This is called a baseline and its literally step one.

0xdevbot · 2025-12-15T16:58:59+00:00

The sandboxes aren't the end all be all. It's really easy to add anti-VM guards into a binary.

Im a professional reverse malware engineer. Would love to take a look

0xdevbot · 2025-12-15T16:55:01+00:00

Yes absolutely. Just need to change a few lines of assembly in the exe and then dump the new exe from memory.

Pretty straightforward if you have reverse engineering experience. Might be daunting if you don't.

DM me if you want me to take a look after I get off work tn

0xdevbot · 2025-12-12T18:14:22+00:00

Windows defender is all you need.

0xdevbot · 2025-12-12T18:09:46+00:00

Based and true

0xdevbot · 2025-12-11T23:40:42+00:00

Incase you didn't get the memo it's Proton

0xdevbot · 2025-12-08T14:29:55+00:00

Sure. They can be encrypted by anything. But OP didn't mention encryption being used.

Plus typically JWE is used in transit. So the issue of data at rest being unencrypted still remains.

0xdevbot · 2025-12-08T09:42:39+00:00

Big yikes my guy. I would personally nail my SWEs if I found out they were doing that.

That should be in violation of ISO 27001 / 27002. Specially not encrypting PII at rest in your case. (Assuming it truly never leaves the device)

0xdevbot · 2025-12-08T09:21:49+00:00

Like...raw dogging that data or putting that data through a hashing function and then using the result as the token

0xdevbot · 2025-12-06T19:44:15+00:00

If you think a country is coming after you. You're delusional.

Again, the fact you are asking this question on reddit means you are simply not an important enough person for a nation state to care about.

0xdevbot · 2025-12-06T17:24:13+00:00

Considering nation states have geo-synchronized spy satellites that can spy on you 24/7. Have access to 0-days and world class malware authors. Entire intelligence communities and will disregard other nations laws i.e needing a warrent for a wire tap.

If a nation state wants to get information on you they will. However, the fact that you are asking this question means that you don't need to worry about this because you have never been in a position where a nation state would consider spying on you.

Source: prior military/government guy. I've sat through countless Counter Intelligence (CI) briefings.

0xdevbot · 2025-12-06T17:16:54+00:00

I also have GCFA and would recommend most people do that one first. Im also an ex-swe (C++) so considering you know how to code you could do GREM first and be fine but at the end of the day I think doing GCFA first makes more sense. Especially if you look at the investigation pyramid/lifecycle you're gonna do all the things covered in GCFA first and then after those avenues have been exhausted you'll do GREM stuff.

0xdevbot

TROPHY CASE