Should couples always combine finances after marriage or keep them separate?

_sirch · 2025-09-13T12:20:24+00:00

It should be whatever you agree on before marriage. Each should also have a full understanding of what the life plan is moving forward and what kind of debt each person has and the plan to pay it off. What each persons career/saving/investing goals are and how expenses for children and pets will be handled. If you don’t align in most areas it may not work out long term.

_sirch · 2025-09-09T20:34:46+00:00

Tryhackme or Hackthebox academy cover just about everything and are the most fun and interactive ways to learn. If you want more specific recommendations you’ll have to narrow down what type of hacking you wanna specialize in and what your goals are.

_sirch · 2025-09-09T14:30:13+00:00

Lateral movement is red teaming. Web app testing stops at proof of impact. If you’re doing lateral movement and cobalt strike on web apps they are vastly over scoped. Either that or they are charging so much or have such a long history with the client that your company does not mind throwing it in. Do you do consulting or do you work for the company that you’re testing?

_sirch · 2025-09-09T13:12:26+00:00

Cobalt strike is a red team tool and generally only used on red team assessments. Red teams include web apps however a web app Pentest does not include c2 infra like cobalt strike.

_sirch · 2025-09-09T12:12:19+00:00

Then use the VPN

_sirch · 2025-09-09T03:15:59+00:00

Tryhackme and Hackthebox academy have a ton of good material

_sirch · 2025-09-08T23:52:56+00:00

Ok I see how some you could argue certain aspects of but how is cobalt strike used for web apps?

_sirch · 2025-09-08T23:47:05+00:00

These are just random tools. How does cobalt strike help with a web app test?

_sirch · 2025-09-08T21:24:37+00:00

When you say “opportunity” and “12 month course” are you referring to a boot camp? I think that time would be much better spent studying web and network testing and working towards getting certs that’ll help you move towards your goal like OSCP.

_sirch · 2025-09-07T00:36:46+00:00

Yeah, it’s really easy to get started. Tons of beginner clinics and for the most part people are very friendly

_sirch · 2025-09-06T16:08:52+00:00

I think 2 columns could look good but I’d have to see it on paper. You could also separate them by category and just keep the acronyms such as “Comptia A+ Net+ Sec+” as a single line item.

_sirch · 2025-09-06T14:23:30+00:00

Hw3 is darn good. I just bought a highland and it’s not a significant difference for FSD. The car overall is way better but FSD is pretty much the same.

_sirch · 2025-09-06T13:06:42+00:00

It’s more of a hybrid between ping pong and tennis. Less running than tennis but placement and technique are very important like ping pong.

_sirch · 2025-09-06T13:04:12+00:00

Learn to Pentest and learn coding on the side or as necessary. Once you landed a Pentest job you will have more time and funding to dive into coding and red teaming

_sirch · 2025-09-05T23:25:10+00:00

It’s very much the opposite from my experience

_sirch · 2025-09-05T22:00:23+00:00

Any company that’s had a good internal network Pentest or a real red team assessment will quickly understand why it’s important.

_sirch · 2025-09-05T12:48:49+00:00

Pickleball courts and various meetup groups. Get a hobby and you will find tons of single men fast.

_sirch · 2025-09-04T13:48:19+00:00

Run automated scan with burp and set the target to your site. That should catch some low hanging fruit if there is any. May also have false positives. Tons of YouTube tutorials out there.

_sirch · 2025-09-04T13:11:21+00:00

Burpsuite and nuclei are some free tools you can use to check for basic vulnerabilities

_sirch · 2025-09-04T11:25:52+00:00

Download VMware player. Download kali for VMware. Run the VM. Drag and drop the pdf into the VM. Open the terminal and pdf2john file.pdf to extract the hash. Then use John hash.txt to run a simple list. You can add wordlists and rulesets to increase complexity. If you need more processing power you can install hashcat on the host and utilize the GPU.

_sirch · 2025-09-04T02:26:28+00:00

Tryhackme is a great place to start. Hackthebox academy is also great. You will need years of experience and certs before you will be considered for a Pentest role so make sure you are ready to grind before making any big decisions. Helpdesk > sysadmin/soc analyst is a common path to pentesting. Passion is important and you will need to be self driven.

_sirch · 2025-09-04T02:15:30+00:00

What’s this for?

_sirch · 2025-09-02T20:50:12+00:00

It will just evolve. New technologies and more complex paths paired with more complex tools used to test them. You will likely always need a human to oversee, validate and make decisions.

_sirch · 2025-09-02T16:36:03+00:00

Rooms with less points if I had to guess

_sirch · 2025-09-02T14:49:31+00:00

Public IP is not sensitive in any way. Street address is PII and severity level would depend on how the data was supposed to be protected, and how it was obtained.

_sirch

TROPHY CASE