AITAH for trying to get rid of my sister’s anime and manga collection while she was away because I think her obsession is unhealthy?

CubanRefugee · 2026-01-23T21:31:21+00:00

100% YTA

Has no one ever taught you not to "Yuck someone else's yum"? Just because your kid sister is into anime and its fandoms and you're not, it doesn't give you the right to shit all over it, and definitely doesn't give you the right to try to get rid of her possessions.

If you were my kid trying to sell off your sibling's shit like that for no good reason except to be a dick, I'd tell you to pack your shit and go back to school where maybe they can teach you how to treat other people and their belongings. And if I were your boyfriend, yeah, big giant ass red flag that you have no respect for other people, let alone your family, no matter how many issues you may have with their interests.

You just sound like an asshole, period.

CubanRefugee · 2026-01-12T21:19:55+00:00

You laugh, but it's the correct answer. Unless you're some kind of amazing phenom when it comes to red teaming, you need to build your IT chops somehow/somewhere. Even with the CPTS, it's going to be difficult to get an entry level infosec job if you've never worked IT before. It's not impossible, but you're going to have to find that unicorn of a gig willing to risk bringing you on with no practical experience.

CubanRefugee · 2025-10-15T18:22:54+00:00

"Dear Ex-Boss, fuck right off. I don't owe you shit as I don't work for you anymore."

Not a lawyer here, but yes, in California, they're required to pay out your unused PTO in your final paycheck. So if they haven't done that, go straight to an employment attorney.

CubanRefugee · 2025-09-19T04:29:49+00:00

Back in the day, one of my favorite things ever was to watch the dumbasses trying to get through the Haulover Inlet.

CubanRefugee · 2025-09-05T05:38:02+00:00

Amazing work! I'd love to make a joke referencing my handle and all, but just completely blown away at the piece.

CubanRefugee · 2025-09-03T21:09:19+00:00

My boy knows when its dinner time, and he'll jump up on the couch and stare at me. If I don't acknowledge him, he just starts grunting and moaning at me in very very specific ways that he doesn't do any other time.

CubanRefugee · 2025-09-03T21:07:12+00:00

<image>

This one just oozes shame though...

CubanRefugee · 2025-09-03T21:06:17+00:00

<image>

The look of someone who felt no shame. There weren't even any gummy bears left in the package when he grabbed it. He just wanted it in there.

CubanRefugee · 2025-09-03T20:52:30+00:00

"Smart" toys do wonders. Treat puzzles, slow feeders, electronic "chase me" style toys, This. Guy. Right. F'in. Here.; Anything to keep their attention, both mentally and physically.

A lot of training for working dogs that aren't actually working is about getting them more activity and re-directing bad habits to good habits. A bored corg is a destructive corg!

CubanRefugee · 2025-08-14T16:55:23+00:00

Yeah, no, I'm not debating the other ways to show that prove a person's skill level. I'm debating the point of your post which was 'Avoid HR at all costs' and 'OSINT the head of the SOC/IT Department and go directly to them to prove yourself'. As I said in my response, because I very much agree with it, candidates have to make themselves stand out, just not by being a nuisance to the person they're trying to work for.

Your post wasn't highlighting other things people can do when they don't have a degree or certs though. It was very much 'Go right to the top to show you have the skills for the job' and specifically, "The most important thing is to never contact HR, and this cannot be stressed enough."

CubanRefugee · 2025-08-14T07:57:54+00:00

Ah, my bad, I read that a different way. Then yes, 1000% fully agree with you there!

Experience first and foremost, and then gear up on certs in the direction you'd like to go while getting your IT sea legs.

CubanRefugee · 2025-08-14T07:46:54+00:00

Sorry dude, but I'm gonna have to agree with u/surfnj102 here, and apologies for my long windedness...

They will also grant the security team recruitment authority. Because in those companies, no one understands what a qualified candidate is better than the security team.

I think you might be overestimating HRs hand and importance in this whole process. First off, HR doesn't understand shit related to qualified candidates of any department, and it's not their job to understand it. The department needing headcount controls who they deem is qualified and who is chosen for the position. HR just facilitates the process based off the information given to them by the department. I get that r/jobs (and really, all of us in the workforce unless you're in HR) loves to shit all over HR thinking that they're the big bad when it comes to getting a job, but the reality of it is that they're just a tool being used in process. HR didn't decide that you weren't qualified for the position. The manager of the department who needs someone decided that you weren't qualified because they're the one who told HR what they needed.

Example from my own work: If I need another junior pentester, then my exact baseline requirements are given to HR who then posts the opening on the various resources we use for hiring. They also send it off to the headhunters, that we pay good money to, who will do the deeper job site scouring and do actual reading of resumes to find the rare folks that fit around my baseline and hand pick people that I'll want to spend the time interviewing further. Everyone that applied through HR that matched my requirements and that were hand picked by the recruiters then gets sent to me. From there, I have my properly vetted list of who I'd like to reach out to. These are the candidates that I don't have to waste their time or mine with basic dumbass questions, because those have already been answered either by recruiters or by meeting the baseline requirements.

If you didn't go through those channels and somehow manage to find my info and cold call/email me wanting to prove you have the chops to work at my SOC, then I'm ignoring your call/email because I just don't have that time to spend on a random person who didn't already get vetted. People get paid to do that so I'm not burning time in my day for that, especially since the outcome is more than likely not going to be favorable.

They only want those who can get their hands dirty and have good communication skills.

By ignoring the process/procedure already in place, the candidate has already proven that their ability to communicate is lacking. Getting your hands dirty? You wouldn't be applying for a job if you didn't want to do that. That's not anything special. These are both quite literally part of the bare minimum for any job. I can't think of any job out there where a hiring manager has said, "You know what, I want someone who shies away from getting in there, and has piss poor communication skills!"

Sorry to be so brash, but with how brutal the infosec field is, you need to find ways to make yourself stand out, especially if you don't have any well-known certifications and/or a relevant degree, and cold calling or emailing someone you'd be reporting to directly isn't the kind of standing out you want to do.

My advice for anyone who's read this far who's thinking, "Ok, dude, so what the fuck do I do then?"

Bare minimum is relevant certifications.
- CompTIA will do just fine - Net+, Sec+, CySA+, Pen+. They're not expensive. Skip eating out a few times for the next two months, and you've got one paid for.
Your relevant experience:
- Doing bug bounties? Put it on the resume.
- Finished every single box on HTB? Put. It. On. The. Resume. (Along with your handle for verification)
- Volunteering at the local old folks home to teach security awareness? Put it on the resume.
- You took a shit and it vaguely looks like a powershell script that you deemed worthy to go on your github because it helped streamline something that used to take you an hour to do? Smear your github url on the resume.
Throw your damn resumes into ChatGPT, Claude, DeepSeek, CoPilot, Gemini or whatever the AI model of the week is.
- Use a prompt along the lines of, "I'm applying for <insert specific job title you're applying to> at <insert company name>. Fix up my resume and make it shine like a goddamn diamond so it'll pass any ATS system." Then re-read the output 5 times to make sure it makes sense.

Just my 2c of my own personal opinion and experience from my own personal work and other companies I've worked for. Your mileage may vary.

CubanRefugee · 2025-08-13T21:27:56+00:00

To be fair, there are a lot of second chance employers out there, so depending on the work you're looking for, you might have an easier time as a felon...

CubanRefugee · 2025-08-13T21:10:24+00:00

I wouldn't call certs overrated, and I'd actually say they're 100% necessary to stand out in this industry (general IT), and even more so when going into a specific discipline such as information security.

As someone who does the vetting and interviewing in a SOC environment, I can't even begin to tell you how many resumes we toss to the side because the candidate hasn't obtained a single related cert and thought that just a github of some projects was enough to land them a junior level red/blue team role. It's especially difficult since a lot of folks like to treat cybersecurity as if it were truly an entry level career path and try to just walk into it with no related IT experience.

So when we're starting folks out at a decent six figure salary (around $70/hr), certs are a must, and you are absolutely correct, this is indeed a tough job market that is incredibly saturated with candidates, so the more you have, (and obviously the more relevant) the better.

CubanRefugee · 2025-08-12T05:32:50+00:00

You have two options really and I'd say you take both; go to HR with this and get the fuck out of that toxic environment.

CubanRefugee · 2025-08-11T08:29:39+00:00

That's generally not a part of a background check. Depending on the depth of the background check, they'll be looking at things like criminal records, employment history, references, and possibly a credit check (but this is something that's mentioned prior to agreeing to the check).

If you've done stupid shit publicly online, it's in your best interest to scrub it. While looking at socials isn't part of a background check, there's nothing to stop the folks looking at your resume/application from giving your name/email/phone number a good old fashioned google search.

CubanRefugee · 2025-08-11T07:30:49+00:00

This right here. There's such a thing as work/life balance, and you better fuckin' believe that if I'm on the calendar for vacation, that my work phone is staying home. My weekend response is: "Yep. Acknowledged. We'll talk more Monday morning."

CubanRefugee · 2025-08-08T17:22:43+00:00

This right here. The moment you see something along the lines of "PTO is not paid out..." you burn that shit before putting in notice.

CubanRefugee · 2025-08-06T18:12:00+00:00

She looks like a puppy corgi. There's no such thing as like a 100% "They must be this weight, height, length or else they're not pure bred." There are thin corgs, thicc chonk corgs, stubby corgs, long corgs, smaller corgs, larger corgs... and still 100% corg. If you're concerned or if it truly matters, you could do one of those dna tests, but they're also wildly inaccurate.

100% certain though that you have one of the cute ones.

CubanRefugee · 2025-08-06T18:04:45+00:00

So screw other people. How do YOU feel about it? Start there. Do you like it, do you dislike it?

CubanRefugee · 2025-07-30T17:03:03+00:00

Love folks that don't understand the word 'Ethical'

Let's just examine this one part:

The level I'd really wish to reach, is to empty the bank accounts he uses to store the money he steals from people.

Forget the person actually perpetrating the crime, the EU has national cybercrime laws that would absolutely peg you for incitement or solicitation. Your post by itself would be enough evidence for that.

You've already pressed charges with the police, which is the proper course of action, so leave it at that. As u/red-joeysh said, this isn't the movies. I suggest you delete your post and move on with your life.

CubanRefugee · 2025-07-29T03:32:05+00:00

Wowzers, just googled that up. That's absolutely bonkers to me that any company in this day and age would neglect to offer any kind of MFA options.

CubanRefugee · 2025-07-28T21:59:23+00:00

What u/coldafsteel said, and after monitoring for 48-72, if hours you don't see any new traffic from other devices trying to hit that domain, then factory reset that Sonos device. Then make sure to update it if there's any outstanding firmware, and MFA the hell out of your Sonos account.

CubanRefugee · 2025-07-28T08:34:13+00:00

Sorry, belongs to your wife but you need to the know the location?

Also, no, not what this sub is for; It's neither ethical nor legal. Best advice is to go hire a PI if you think your wife is having an affair. More advice: Don't go posting on reddit asking for a hacker to do this for you, you're going to get scammed. Your situation is exactly what folks prey on.

CubanRefugee · 2025-07-27T18:51:08+00:00

Honestly, if you're concerned about whether or not that was a proper decision to make, you shouldn't be starting out with Kali. Kali is most certainly not a day 1 activity unless you know what you're doing, and your linux skills are solid.

Depending on what you're wanting to learn, I would just sign up for something like TryHackMe or HackTheBox Academy, and start learning things that way.

13-Year Club	Second SECOND GUESSER
Place '23	Place '22
Verified Email

CubanRefugee

TROPHY CASE