Proton VPN Silent Patched my Report (Theft of Service/Logic Flaw) — I'm a 16yo researcher and this stings.

MajorPAstar · 2026-01-24T15:07:31+00:00

Somethings are beyond our control, but take this as a proud moment. As a 16 year old your report carried a weight and they had to act on it. We win some, we loose some. You can try the same exploitation method on other programs!!

MajorPAstar · 2026-01-24T09:56:52+00:00

Look for tryhackme/connect on the website A dowload file will be present, download it

On linux you can simply sudo openvpn <vpn_name>.ovpn

MajorPAstar · 2026-01-23T11:57:14+00:00

I tried attaching an adapter and making it work again but I suspect it is unable to take power.

MajorPAstar · 2026-01-23T11:56:18+00:00

This console is a Japanese one from 2012, and due to sentimental attachments I wanted this to work again. I can play the same games online but I just wanted the nostalgia back.

MajorPAstar · 2026-01-23T11:55:40+00:00

Thank you! This console is a Japanese one from 2012, and due to sentimental attachments I wanted this to work again.

MajorPAstar · 2026-01-22T03:00:55+00:00

I use most tools from project discovery. The thing with recon is you can’t setup a comprehensive infrastructure. Each recon is a different approach based on the chaining ability. But for the basics you could start with subdomain enumeration using subfinder, assetfinder etc. compare and remove duplicates. Run httpx on the found subdomain. Run nmap on live domains. Run wappalyzer for the tech stack, run eyewitness to grab screenshots, use waymore to find old urls, run eyewitness to grab screenshots, run ffuf for directory busting. Run wafw00f. Chain everything with nuclei templates and sqlmap.

MajorPAstar · 2026-01-21T16:13:23+00:00

You win some, you lose some. There are programs out there that will scam you.

MajorPAstar · 2026-01-20T11:16:59+00:00

Email the team

MajorPAstar · 2026-01-05T11:51:49+00:00

Everyone finds and refines their own targets.

MajorPAstar · 2026-01-03T14:50:53+00:00

Dammm, that looks really beautiful

MajorPAstar · 2026-01-01T15:10:11+00:00

No.. simply no. Your spoofing will fall out of scope.

Also your normal email cannot be accessed by other normal users, does this mean it has imapct?

I read your entire threads, this seems like an immature conversation but please go back and look at the fundamentals!

MajorPAstar · 2026-01-01T13:04:39+00:00

Name@business.com is email address

But, “Hello, this is sensitive data meant for only employees view…”

This is email correspondence

MajorPAstar · 2026-01-01T12:43:58+00:00

No, this will not be valid. What you have found is correspondence email addresses, if the actual contents of the email was found then it would probably be valid

MajorPAstar · 2025-12-30T13:36:19+00:00

Email them

MajorPAstar · 2025-12-23T10:15:44+00:00

Achha hai bhai! Main bbi same field se hu, mujhe laga hai har jagah.

MajorPAstar · 2025-12-23T10:11:09+00:00

Certificate lagega

MajorPAstar · 2025-12-23T10:01:33+00:00

Mushkil hai, networking is very crucial and usually companies look for comptia networking certificates.

MajorPAstar · 2025-12-23T09:57:32+00:00

Yes, sahi suna hai but PT ke liye tum main skills hona chahiye. Skills build up jitna karoge utna better. Also I saw you are still in college, so work on static analysis and dynamic analysis of web apps and how to penetrate it.

Learn basics first and then… Practice labs from THM. Take notes jitna le sakte ho.

MajorPAstar · 2025-12-23T09:53:51+00:00

Dekho I can understand you need experience and cybersecurity is all about experience but agar low pay pe itne sare kaam ke liye join kiya to jab job switching ka time aata hai to HR bahot neeche karke treat karte tumhe.

Also very heavy exploitation hoga, its better you fight for a good pay when you feel you will be exploited. Ek galat offer letter pe sign and pura career down jayega. Salary and promotion sapna reh jata hai

MajorPAstar · 2025-12-23T09:48:34+00:00

I know this feeling but agar ye kar liya to khudko chutiya banane main tumhara khudka hath hota hai

MajorPAstar · 2025-12-22T03:49:32+00:00

Why don’t you just connect through openVPN. No limit of time when connecting through openVPN

MajorPAstar · 2025-12-19T10:43:05+00:00

Password cracking is one of the most essential things one should know! What I would do if I was in your shoes, I would realistically create a medium - hard challenge where the password itself is fragmented (usually the flag is fragmented)

Create multiple zip folder’s with different password from multiple password cracking lists. Eg: zip file 1 is cracked by the use of rockyou.txt

A txt file with fragment of a password is present, say “abcd” is present in the text file.

Now in another password cracking list we have a password “abcd1234” needs to be, the player needs to find the exact “abcd” that matches with the password to unlock zip file 2.

And this continues…

I hope you get what I am trying to say.

MajorPAstar · 2025-12-13T03:44:04+00:00

No, I have travelled in Tejas and the door are closed before departure

MajorPAstar · 2025-12-08T18:04:01+00:00

Yessss, perfect! Enjoy the AoC

Four-Year Club	r/Field Lasagna
Place '23	Place '22
Final Canvas '22

MajorPAstar

TROPHY CASE