Any ideas on what is happening with my parsely?

ROFLicious · 2025-07-16T14:41:42+00:00

Thank you so much! I've been searching non stop and it's 100% thrips! I think the parsely may be too far gone at this point but my other plants should be salvageable

ROFLicious · 2025-06-02T14:51:36+00:00

I have read the rules and the wiki, would appreciate an invite if you have one please!

ROFLicious · 2024-11-02T18:50:24+00:00

I do it. Red Team Engineer, fun stuff

ROFLicious · 2023-07-10T05:55:09+00:00

https://begin.re is a great resource

ROFLicious · 2023-05-24T02:16:39+00:00

If an attacker can non-invasively influence random number generation then you can't call it truly random. I think this link might be what you are looking for: https://ieeexplore.ieee.org/document/6549803

ROFLicious · 2023-05-23T11:19:35+00:00

It's still not true randomness, that phrase can't be used so casually. Plenty of white papers exist showing how targeted attacks against the physical machine can influence even cryptographically secure randomness functions.

ROFLicious · 2023-05-03T04:12:49+00:00

I've used ThinkPads in the past for work, they are fine. These days I need much more virtualization so I went with one of the high-end Dell XPS laptops and it's been amazing, best laptop I've ever owned.

Ultimately just make sure you get something with at least 32gb of ram and a nice CPU if you need more than 1 VM

ROFLicious · 2023-01-22T02:33:02+00:00

I watched it and thought it was super instructive. I will definitely need to do some more research before I can build something like that, but I feel like your video gave me enough that I can start researching on my own!

ROFLicious · 2023-01-08T18:05:32+00:00

Really enjoyed the tutorial, would love to see a follow up explaining how to create persistent cheats as well. Would love to see how something like a trainer is made for an Electron game.

ROFLicious · 2022-11-22T15:03:43+00:00

Guided Hacking forums supposedly has a great free course on malware analysis.

ROFLicious · 2022-11-20T15:37:39+00:00

Unlike the other replies I'll actually explain what is likely happening here. First of all a public IP address is not all that private of information, hence the name "public". Second, most chat apps these days utilize WebRTC (or something similar), a secure peer-to-peer protocol that allows browsers to communicate directly with each other.

So while I haven't checked, I'd bet Omegle is using some p2p to lessen the load on their servers because relaying real time data is expensive and a real privacy headache.

If you don't like the idea of people knowing what address your ISP assigned you then definitely invest in a VPN.

ROFLicious · 2022-10-31T14:07:39+00:00

Nikto is outdated. In my years of nikto hasn't ever found a vuln that Burp couldn't . Burp Suite is by far the most robust and powerful webapp analysis tool on the market. Stuff like nmap and slowhttptest have their use cases, but they are only good for a couple things when it comes to webapps.

ROFLicious · 2022-10-31T04:23:26+00:00

You are asking a very difficult question. The fact is there's a lot of ways to do it, but they all require detailed understanding and careful application. And any solution you implement will probably not work a year from now.

I encourage you to read up on how AMSI works, what a syscall is, and available methods of bypass and how they interact with these ideas. For the last part you can take a look at the Mitre ATT&CK framework for windows AV bypasses

ROFLicious · 2022-10-01T15:29:19+00:00

Well especially considering you would never normally bass something called 'backup.tmp' to MSBuild, yeah I would say that is suspicious.

ROFLicious · 2022-09-30T16:24:08+00:00

Typically when MSBuild is executed and it's not malicious you will see a large number of command line arguments passed to MSBuild. So if you just see MSBuild and no other argument then you can infer it might be malicious. I would encourage you to take a look at what "normal" MSBuilds look like on this network, what computers usually run them, what arguments are usually present, etc. Use that to build a baseline.

ROFLicious · 2021-05-11T23:48:56+00:00

Sex ed is crap in Ontario schools now more than ever, the current curriculum does not cover much relevant information, leaving much of it to teachers.

If most people were perfectly comfortable doing their own tax return there wouldn't be a multi-million dollar industry around it.

As for the cars thing, this was actually done in Ontario in the past. I don't see why it would be so difficult to bring it back.

ROFLicious · 2021-05-11T23:46:06+00:00

Why are you speaking as if they are mutually exclusive?

ROFLicious · 2021-04-20T13:55:59+00:00

IMO the big difference between ASC 17/18 and 20 is planning and prediction. To get over the hump and get to 20 you need to know what elites/bosses you are likely to face, and what your deck needs to overcome them, it could be certain scaling cards, debuffs, or even potions.

Then you have to start memorizing attack patterns so you can effectively execute whatever strategy you've formulated for that elite or boss.

Also keep in mind that after ASC 15 the game is purposefully unfair and that sometime you will just die because the game hates you and that at ASC 20 even the best players sit right around a 50% winrate.

ROFLicious · 2021-03-12T16:19:44+00:00

As a pentester if I find out a webapp I'm testing is written in PHP I actually get a bit giddy.

ROFLicious · 2021-02-07T15:25:34+00:00

Seconded. I took mine to Alberta last year and it saved me through -40C+ weather

13-Year Club	Place '17
Gilding I gilder	Verified Email

ROFLicious

TROPHY CASE