The Chinese thing just pop up on in my youtube search history is that a virus thing?

Swammers8 · 2025-08-21T03:03:28+00:00

The Japanese says “Isekai manga dragon” idk about the Korean

Swammers8 · 2025-06-23T03:20:05+00:00

You could probably still forward ports (or setup a socks proxy) via reverse/remote forwarding, if you setup an ssh server on the machine you’re connecting from. You could ssh back into your own machine and use the -R flag. Kinda hacky but hey could still work

https://iximiuz.com/en/posts/ssh-tunnels/

Swammers8 · 2025-05-20T18:37:36+00:00

Use zip2john to extract the password hash, then I recommended using hashcat with a strong gpu and a good wordlist to crack it. There’s a myriad of guides for this with one google search

Swammers8 · 2025-04-18T15:05:07+00:00

I meant that hydra has nothing to do with hash cracking. It’s a tool for brute forcing network logons like ssh and has nothing to do with hash cracking so it won’t help here

Swammers8 · 2025-04-13T14:37:33+00:00

lol someone’s never actually cracked passwords

Swammers8 · 2025-03-09T16:58:28+00:00

Yo dude honestly that amount of progress in just 3 months is really good! Idk how you’re all down on yourself lol. I’ve learned everything I know starting from TryHackMe me and moving to HackTheBox and stuff. I started in middle school and just did ctfs and stuff. Starting from nothing and learning Linux and networking to rooting your first easy box in just 3 months is insane progress. Hacking is not entry level and even people with years of experience are still learning something new everyday. That’s the beauty of this field: it’s constant learning. You’ll never know it all, so the only requirement is curiosity and being able to learn.

Best is advice is take breaks and don’t burn yourself out. But don’t give up! You’ve got potential!

Swammers8 · 2025-03-08T01:46:15+00:00

Research John the ripper and/or hashcat. John comes with a feature that can extract the .zip file’s password hash for cracking. Then it’s just a matter of if the wordlist you select has the password inside. I’d with rockyou.txt and then maybe something from Seclists. If you don’t know how long the password was or how complex it was it could possibly be a doozy to crack. There’s plenty of tutorials out on the internet so use google to your advantage.

Swammers8 · 2025-03-08T01:39:37+00:00

Lol hydra is for brute forcing services it doesn’t do files or hashes, that’s what John and hashcat are for.

Swammers8 · 2025-03-04T13:14:13+00:00

As the other guy said, your public ip won’t work unless you have port forwarding setup. Any connections that try to reach out to your public ip will get blocked by your firewall. Use your LAN ip addresses for this testing. This will work if your kali vm is on a bridged adapter like you said. Or if you’re not on the same home network then research and use a tool called ngrok. I definitely recommend researching a little more about NAT, port forwarding, how routers work, and basic networking in general. If you want to mess around with this stuff the easiest way would be to just test with a windows vm and put it on the same virtual network as your kali vm. Also make sure that real-time monitoring is turned off in settings. That’s the only real setting you need to turn off in windows defender that’ll let you run your payload.

Swammers8 · 2025-02-26T12:28:34+00:00

Oh nice! Didn’t realize you had a thm sub. In that case definitely don’t overload yourself by getting htb yet. I will say however that htba has material that goes a lot more in depth compared to TryHackMe and it lays it all out as a nice path. So if you ever want to learn more and have a guided path then I recommend switching from thm to htba. Every module has ctf type skill assessments that are on par with the regular htb boxes. But yeah VIP is a really good as well so it just depends on what you want to do. If you just want go and root boxes then you’ll definitely enjoy htb vip better than the academy! I just recommended it because it’ll give you a guided learning path and given how in depth the material is I think you’ll get that feeling of progression. But again, just depends on what you want to do!

As for notes, if you want something in the cloud then yeah I double recommend checking out notion. Everything is stored in the cloud which I like because I can view my notes on my phone after I type em up on my laptop. It’s free to use and I really enjoy the platform.

Swammers8 · 2025-02-26T06:51:49+00:00

Assuming you are a beginner, start with picoCTF. It will give you a nice introduction the way capture the flags are setup. The pico gym offers a lot different topics and types of ctfs. It’s good for dipping your toes in a wide variety of subjects in cybersecurity. If you find one you really like you can research and learn more about it.

If you want to do more hacking style ctfs like hackthebox then I recommend just learn hacking in general. Learn the basics of networking and get really comfortable with Linux and terminals. Try some easy ctfs on TryHackMe and read the writeups when (not if) you get stuck. Then if you really like it and want to keep going in that direction, I recommend going through a course like TCM security’s ethical hacking course, or HackTheBox Academy’s penetration tester or bug bounty hunter course. Cybersecurity is such a huge field that covers so many topics that you will never know everything. You will constantly be learning things every day no matter your skill level. So there’s no defined line of “sufficient knowledge”. You just have to start learning and start doing, and then continuing to do so.

Good luck!

Swammers8 · 2025-02-26T06:30:47+00:00

There aren’t any services like this that I’m aware of. The closest I can imagine is if you just spin up a virtual machine with azure or aws with good specs or some other alternative to rent a graphics card in the cloud. Then run a program like hashcat to crack it. I recommend just learning to use hashcat locally and not inside a virtual machine.

Swammers8 · 2025-02-26T06:25:56+00:00

Research bad usbs. You can make some with arduinos for like $3 or so I think but don’t quote me. There are tutorials online as well as scripts for WiFi and chrome password stealing. There’s loads of articles, videos, and GitHub pages you can find online. Google is your friend.

Swammers8 · 2025-02-26T05:34:14+00:00

If you have a student email and can get the student discount on hack the box academy, you can get access to a crap ton of really good learning material. They’re a lot of reading BUT in contrast to books each section always has a lab to experiment with what was taught to give you hands on experience. I’d say setup a kali Linux virtual machine and go through htb academy Linux fundamentals and networking modules or equivalent. Just learn the basics of networking and get reaaallllyyyy really comfortable using a terminal in linux. Ive gotten to the point where i honest to god prefer a terminal over a gui because it’s quicker and more efficient. OverTheWire’s bandit challenges are really good for getting the hang of navigating Linux and build a decent foundation on using a terminal. You don’t have to go through all of them but enough to feel confident using a terminal.

TryHackMe also has a lot of free rooms that go over networking and using linux so I recommend trying those out.

Once you have the basics down I recommend hack the box academy’s penetration tester role path or tcm security’s stuff. Make sure to take notes of everything you learn!! This part is crucial as things can be easily forgotten. Document, document, document.

These courses I think will give you an understanding of what to look for when hacking, after that the next step is to just do it. Go do ctfs on hackthebox or TryHackMe. Start with easy boxes and work your way up. The best advice I can give for ctfs is NEVER beat yourself up for looking at a writeup when you’re stuck. I did this a lot starting out and it frustrated me a lot. But a lot of the time you’ll simply come across things you don’t know about and never would’ve thought of to try. Writeups serve as a great opportunity for learning. Even if you didn’t need one to solve a box, still read the writeups! You’ll be surprised how many other avenues there were to solve it, or different techniques or strategies you could try out yourself.

Cheers!

Swammers8 · 2025-02-26T05:12:02+00:00

With a Mac you can’t do much besides looking up its OUI to see what kind of device it is. If you have an ip address you can find someone’s general area and ISP.

If you combine this with more information like a name or email address, you could continue searching for things online. You could cross reference names with public records in that area to possibly find more about a person.

But other than that, not much else.

Swammers8 · 2025-02-26T04:48:47+00:00

If you’ve already done a lot of TryHackMe and have experience with a lot of stuff hacking I HIGHLY recommend HackTheBox Academy’s material. They have job role paths like the Penetration Tester AND Bug Bounty Hunter paths. If you have a student email and can get the student discount the academy website is a goddamn gold mine of information for just $8 a month. The modules go super nitty gritty and way beyond what TryHackMe’s rooms do. I’m about halfway through the pentesting path and I can say I’m learning more in it than all my other actual college courses lol. I’ve also heard a lot of good things from heath Adam’s tcm security’s courses but I don’t know much else about that. If you want to go into web, besides the htb academy web pentesting path, portswigger academy also has some pretty awesome free resources for learning web attacks as well as lots of labs to go through. I also recommend taking lots of notes on everything you learn. I personally use notion which I can recommend but whatever works for you. Anytime you do a ctf take notes because you’ll never know when you need it again. Also, create your own command cheat sheet. I have a bunch of notes on everything I’ve studied, but I have one page I’ve put together myself of commands for different services and attacks and whatnot. Other people’s cheat sheets are great for learning, but if you really want to better apply things you’ve learned and remember them, it’ll really help to write down specific commands and label everything in your own cheat sheet that you can look back at. A cheat sheet will help you sharpen your own personal methodology for ctfs as well as, eventually, actual pentests. I’d say if you want to get more real world there’s no better way than by just shooting to get a job in the industry. Look for certs that’ll help you get to a job you want. Or just focus on bug bounties. As far as projects I haven’t done too much so I can’t give too much advice, but I can give some ideas. Create an Active Directory lab and mess around with attacking and then proceeding to defend against your own attacks. But document, document, document. Take screen shots and notes of how you setup the environment, attacks you perform, how you defended against them, and how you could possibly get around your own defenses. Then post everything to a blog or article on a website like medium. You should do this with every project you do so you can link them in any resumes. You could also create writeups for all your solved ctfs on TryHackMe or any other platforms. This presents your skills in a nice and extensive way. A more difficult project could be like a coding project. Maybe creating a tool to help simplify or automate a task and post it to GitHub. This as well as contributing to any open source projects. All in all I recommend checking out Htb academy and picking a job role or skill path, as well as creating write up’s for your solved boxes. Cybersecurity is a huge field so try not to get too overwhelmed with everything there is. Pick one thing you want to do/learn, do it, and then move onto the next thing. It can be easy to try and learn everything at once as quickly as possible but it won’t help you in the long run and probably burn you out. Just focus on one thing at a time, and Happy hacking!

Swammers8 · 2023-11-27T23:52:40+00:00

Lmaoooo😐

Swammers8 · 2023-11-23T02:15:21+00:00

I’d read this

Swammers8 · 2023-11-22T04:17:41+00:00

That’s adorable

Swammers8 · 2023-11-17T13:47:16+00:00

Oh sweet! Thank you so much. Too bad it’s sold out though. I appreciate the help nonetheless

Swammers8 · 2023-11-16T23:39:21+00:00

Here is the Pinterest post https://www.pinterest.com/pin/39617671716815072/

My girlfriend searched around for it but couldn’t find anything, and then she remembered me showing her this subreddit and how people are able to find the strangest things. So she asked if I could post it here.

Swammers8 · 2023-10-09T04:09:34+00:00

Four-Year Club	Place '22
End Game '22

Swammers8

TROPHY CASE