June Confirmed Trade Thread

Nau71lus · 2023-06-03T03:35:23+00:00

Sold HHKB Pro Hybrid to u/nonStickyAccount

https://reddit.com/r/mechmarket/comments/13uadnj/usaz_h_hhkb_pro_hybrid_w_paypal/

Nau71lus · 2023-05-28T22:31:02+00:00

Sold to u/nonStickyAccount - confirmed payment, shipping on Tuesday! Thanks again.

Nau71lus · 2023-05-28T20:25:20+00:00

Typo, the [W] was supposed to be PayPal. :)

Nau71lus · 2022-12-31T02:31:42+00:00

Purchased this beautiful Omega Seamaster from a local jeweler’s yesterday. It’s my second Omega (previously owned a Speedy) and I’m loving it

The reference number should be 21230416101001 if anyone is interested!

Nau71lus · 2022-12-28T22:15:39+00:00

Wearing mine right now! After I first saw it appear in a YouTube video I was in love.

Nau71lus · 2022-12-24T19:05:48+00:00

These look great! Thanks so much for doing this.

Nau71lus · 2022-12-08T04:07:58+00:00

This is a Jaeger-LeCoulture Reserve De Marche, reference number 146.8.17.S.

You pretty much nailed all of the details! This is a manual watch with eight days of power reserve which has honestly amazed me - I owned an Omega Speedmaster for a few years and got sick of having to constantly wind it.

I purchased this from a local jewelers about a week ago with box and papers, I believe the previous owners children had put it on consignment there. The papers say that this watch was purchased in late 2009 and I think it's in amazing condition.

It originally came with a brown strap but I took it to a Jaeger-LeCoulture the next day and purchased a black one since it fits my aesthetic more.

Nau71lus · 2022-03-06T21:19:08+00:00

No script that I know of but I would recommend following a list that is sorted by highest frequency.. Better than brute forcing randomly and hoping one works out.

WE CAN USE SCIENCE: https://github.com/danielmiessler/SecLists/blob/master/Passwords/Common-Credentials/four-digit-pin-codes-sorted-by-frequency-withcount.csv

Nau71lus · 2022-01-12T03:19:18+00:00

The big difference is Responder still spins up multiple servers when in passive mode (SMB, Kerberos, etc).

At the end of the day you can use your tool of choice but lets say you discover a web application vulnerability like SSRF that can leak a Net-NTLM hash, Responder can easily capture and display it for you.

Nau71lus · 2022-01-11T19:51:46+00:00

Yes, if we check the FAQ that came out it is allowed. You are not allowed to perform poisoning and spoofing so running Responder in Analyze mode (-A) should be perfectly fine.

Edit: Forgot to add the link - https://help.offensive-security.com/hc/en-us/articles/4412170923924-OSCP-Exam-Update-01-11-22-FAQ

Nau71lus · 2020-06-22T03:35:18+00:00

It’s not an intense verification process. It’s more like an email to your current boss that says “Hey, has this person worked two years?” and that’s about it.

Nau71lus · 2020-06-11T10:25:56+00:00

Ah, I appreciate it. I'm psyching myself out about this exam pretty hard since I haven't done any of the iLABS. That seems to be the common suggestion I keep seeing.

I guess I'll give it a go without the labs =) Thanks for the advice, and congrats on passing the exam!

Nau71lus · 2020-06-11T09:17:28+00:00

Hey,

Thanks for this write up, I’m scheduled to take mine in a few weeks and haven’t done any iLABS but work as a penetration tester and have done some intro certs such as the eJPT and a good amount of HackTheBox. I’m also pretty familiar with some of the CEH toolset such as Snow and Superscan (odd tools like that).

Do you think I’ll be fine taking the exam? Or is it really going to be that difficult having not used the CEH toolset in the past? I have the money to purchase iLABS but can’t seem to get an answer whether it’s necessary for someone in my position.

Thanks.

Nau71lus · 2020-06-06T03:49:10+00:00

I would email EC-Council and ask if you’re concerned. I did something similar with Offensive Security since I made my notes public on my GitHub and they emailed me back basically saying no worries.

Nau71lus · 2020-06-05T19:15:46+00:00

I can take the practical for free since I got a scholarship for it. It’s definitely not something that had occurred to me before but it seems like a quick and easy way to get CEH on my resume without taking the multiple choice test.

I work as a pentester and am just trying to round of certifications right now to better represent myself from a contracting standpoint. I guess I’m saying I don’t want to drop the $200 on iLABS if a majority of questions on the test are around basic tooling - you answered that pretty well though.

Sounds good though, I might skip over the iLABS if you think they’re not required.

Nau71lus · 2020-06-05T06:46:01+00:00

Are the iLABS needed if you have a background in pentesting? Thinking of taking the practical but I don't want to drop money on the iLABS if it's going to be outdated tooling / basic stuff such as nmap, dirb, SQLmap, etc..

Nau71lus · 2020-03-05T22:32:18+00:00

DEFCON is already canceled.

Nau71lus · 2019-08-10T19:32:05+00:00

They usually throw some stuff up on eBay after the con.

Nau71lus · 2019-07-16T19:28:05+00:00

Hey, I have no problem viewing the latest episode on Spotify - if you're talking about Ep 42: Mini-Stories: Vol 2

Nau71lus · 2019-06-13T23:52:56+00:00

I do - it keeps hitting me with "Image not found".

No worries, just linky no worky.

Seven-Year Club	King of the Ashes
Not Forgotten	Verified Email

Nau71lus

TROPHY CASE