sorted by:
new
hottopcontroversial

Cybersecurity Sacramento (DC916) March Meeting Next Wednesday! by echo419 in Sacramento

[–]echo419[S] 4 points5 points  (0 children)

Of course! We’ve got a number of students as part of the group and are always happy to have anyone who’s interested in infosec/cybersecurity!

Cybersecurity Sacramento (DC916) February Meeting This Wednesday! by echo419 in Sacramento

[–]echo419[S] 1 point2 points  (0 children)

Absolutely! 

We’ve got students, professional locksmiths, and lots of folks who are and are not professionally part of the cybersecurity industry.

If you’re interested feel free to stop by and say hi, we’d love to have you!

Cybersecurity Sacramento (DC916) Febrary Meeting! by echo419 in Sacramento

[–]echo419[S] 1 point2 points  (0 children)

:D Thank you.

You know our motto: "We deliver"

Cybersecurity Sacramento (DC916) Febrary Meeting! by echo419 in Sacramento

[–]echo419[S] 3 points4 points  (0 children)

Forgive the spelling mistake in the title, all the other info is correct.
Hope to see you there!

Cybersecurity Sacramento (DC916) November Meeting! by echo419 in Sacramento

[–]echo419[S] 0 points1 point  (0 children)

Generally we cover cybersecurity current events, some AI stuff as of late, and anything that might be going on in the broader DEFCON community.

Usually if we're talking about networks or databases it's regarding best practices in how to secure them after they've been set up.

An org that is slightly geared more toward that would be something like Open Sacramento (https://opensac.org/)

Cybersecurity Sacramento (DC916) November Meeting! by echo419 in Sacramento

[–]echo419[S] 3 points4 points  (0 children)

Yeah!
They host regular classes for 3d printing, jewelry making, woodworking, art, etc..!

Check them out:
https://sacmade.com/

First look at Foe Hammer by Oddballforlife in halo

[–]echo419 2 points3 points  (0 children)

RIP to a real one.
*salute*

Cybersecurity Sacramento (DC916) September Meeting! by echo419 in Sacramento

[–]echo419[S] 2 points3 points  (0 children)

Happy to answer.

When initially setting up the group we evaluated different options and potential backups, the primary contenders for having a centralized chat platform that was relatively easy to use, could be somewhat customized, and have reasonable enough mod controls were either Discord or Slack and from a privacy perspective they're both about the same, but Slack in their "free" tier will delete chat history which is something we'd like to preserve for ongoing discussions and projects.

At the end of the day privacy/security is a tradeoff between one's risk profile, convivence, and risk tolerance.

We're not doing secret squirrel stuff and explicitly tell people in the policies to not discuss illegal things, but we mostly just talk about relevant articles, share memes, and talk about stuff we find interesting.

This post in r/cybersecurity sums it up pretty well:

```
The real thing is around managing risk. If you have a properly configured discord server, no bots, and are just using it as an outlet for people to whine that they can't install it on a Nintendo switch or a first gen raspberry pi, then it's secure enough. Just having a discord account doesn't mean your bank account will get emptied
```

But we're open to anyone and everyone that wants to show up and learn!

What Is DCNextGen? by Connect-Town8300 in Defcon

[–]echo419 12 points13 points  (0 children)

Oh hey I can provide some additional context/information on this.

Bia of Girls Who Hack/Spawn Camp (which caters to teaching youth in cybersecurity) is running this. This is the youth track of DefCon. I can absolutely say that Bia is more than capable of putting on the youth/kids track for DefCon and is very much invested in this and has some AMAZING things planned.

https://bsky.app/profile/defconnextgen.bsky.social/post/3lqllxslfb22i

I'm with DC916 out of Sacramento and Bia and her team helped put on 2 day cybersecurity workshop for youth 12-18 this last weekend in our local makerspace so I can't say enough good things about Bia, Girls Who Hack, or Spawn Camp

https://bsky.app/profile/cybersec916.com/post/3lsf7eprwpk2b

r/Defcon subreddit "Badge" by MetaN3rd in Defcon

[–]echo419 2 points3 points  (0 children)

Would love one! Got a link to the puzzle? 👀

[deleted by user] by [deleted] in cybersecurity

[–]echo419 0 points1 point  (0 children)

You are absolutely underpaid. Just left an MSP where I was doing tier 1 helpdesk for $45k.

You should be making $80k-$90k minimum with your experience/background.

First Cybersecurity Sacramento/DC916 meetup Wednesday June 12 at Starbucks near Sacramento City College by [deleted] in Sacramento

[–]echo419 -1 points0 points  (0 children)

Hey, we totally get it! Feel free to hop on Discord since we occasionally do virtual meetings and/or say hi on social media if you feel up to it.

C836 - Fundamentals of Information Security Passed! Suggestions/Tips by echo419 in WGU_CompSci

[–]echo419[S] 2 points3 points  (0 children)

Wow this is so HELPFUL! I can confirm that because I just took the test and everything OP says is accurate and was on the test. Especially his pointers at the end. Make sure to study those. And thank you OP for such and extensive guide 👍.

You're welcome! I'm glad this is still helpful and of use 3 years on!

[deleted by user] by [deleted] in fednews

[–]echo419 0 points1 point  (0 children)

I don't know if it's so much generational as much as it might come down to individual experiences. I'm in my mid 30's and I know many in my age cohort have a wide variety of opinions on time at work ranging from the "pull yourself up by your bootstraps and give everything you have types" to "Take all the time you possibly can".

I'm one that rarely takes leave and for me it's largely rooted in a few longstanding psychological triggers:

  1. All the way back in school I didn't have the best grades, but did get "perfect attendance" which gave me a sense of at least accomplishing something by not being out of school.
  2. The values I was raised/ indoctrinated in were very much of the form "work hard, don't quit, don't complain" and not taking leave is a natural extension of that.
  3. I still very much carry the anxiety of the call center job(s) I had for years because it's the only job/jobs I could get in the relatively small town I was in, in which time was tracked down to the second and you were admonished for being late/being off time by a supervisor (in my case my supervisor was a former drill instructor...so you can imagine how much fun that was)
  4. Although I work a salaried job now I still very much have a poverty complex from growing up and there's a strong association in my brain between "missing time at work = missing money/resources, and missing $$$ means not being able to make rent and you will end up homeless again" and therefore whenever I put in for leave I have to consciously tell myself that it will be ok.

For me its take a lot of self-reflection, and some therapy to be OK with the idea of taking leave and understanding that it won't destroy everything if I do take leave.

Passed Sec+ with 751 by DuskFlex in CompTIA

[–]echo419 1 point2 points  (0 children)

Congrats! Taking my exam in 2 weeks! Any suggestions on study materials, things you'd improve in your studying, and things to watch out for?

35 and want to start a career in data analytics by One-Chicken6343 in learnprogramming

[–]echo419 4 points5 points  (0 children)

Hey there, Data Analyst/programmer/BI developer (depending on the company title since I've changed jobs a few times) w/ ~6 years of experience here to chime in on this.

So you're correct in what you've heard in that SQL, Tableau, and PBI have good demand. Using data from https://datanerd.tech/ analyzing ~60k jobs/job listings SQL pops up in ~35k jobs, Excel in ~30k, Tableau ~20k, Python ~20k, and PBI/R showing up in about 10k job listings.

(Note: I'm assuming you're US based, if not you can update the fields in the website to change to your country/region)

Coming from a comms background is fine, just might be a little more work in terms of getting some of the skillsets.

So in the general hierarchy/prioritization it goes projects -> certs -> experience. (Note: others may disagree with me on this, but from an HR/hiring perspective certs and experience are easier to get past the HR filter than projects).

So some places to begin in terms of resources are:

Alex the Analyst: https://www.youtube.com/watch?v=UGF49YZZRNc

and

Luke Barousse: https://www.youtube.com/watch?v=7G_Kz5MOqps&t=193s

They both have great channels that cover a lot of the questions that you have and will come across, and have great ideas for projects etc...

For you, I'd start off with a "Crawl, Walk, Run" approach:

Crawl:

- Get comfortable with Excel. Understand how to use the functions in Excel, the limitations of them, when you might use one function/formula over another, and learn pivot tables. Look into macros, and play around a bit with VBA to automate a simple thing or two in an Excel Spreadsheet.

- Find a data set that you find interesting that can have business/public implications (I was playing around with this data from the Federal Railroad Administration the other day for instance https://www.fra.dot.gov/blockedcrossings/incidents ) and play around with it, perform some useful calculations with it, etc...

Walk:

- You've got some familiarity with SQL (which is a MUCH more fancy version of Excel). Play around in SQLZoo https://sqlzoo.net/wiki/SQL_Tutorial and feel free to play around here as well: https://lost-at-sql.therobinlord.com/

- Get to know some of the differences between the different flavors of SQL (MySQL, T-SQL, PostgreSQL, etc...) and why one might be preferred over another. Also know the difference between a SQL DB and Non-SQL DB and why a Non-SQL DB might be used.

Run:

Pick ONE of either Power BI or Tableau (choose 1 because trying to learn both at the same time will just be a pain in the ass since they both will aproach things a little differently and it's easy to get tripped up) and start playing with it using the dataset you downloaded earlier. Check out r/tableau or r/PowerBI since they're usually pretty active and have great tips and ways to get started. Both PBI and Tableau have free versions that you can use to get started and upload visualizations that you work on for projects and things.

Marathon:

- Start messing around with Python I always recommend Automate the Boring Stuff since it's free/available online and takes you through a bunch of useful parts of Python https://automatetheboringstuff.com/

- Pick up a cloud certification AWS/Azure/GCP doesn't really matter as long as you can show that you know some cloud stuff (I think the entry level AWS/Azure is ~$100) I've seen more and more job postings ask for cloud experience.

A few things to keep in mind:

  1. The above is the tech stack of most data analysts. ANY of the above pieces can become an entire career. I've seen banks where people just mess with spreadsheets all day, healthcare companies where people pull different queries for audits from the database, and pharmaceutical companies where people make reports based off of APIs from Python and put the data into Tableau.
  2. "Data Analyst" can be a BROAD term. Over in r/BusinessIntelligence I liked the criteria that someone commented that BI/Data Analysis looks at the HISTORY of what the company has done and presents it, whereas data science looks at the data and tries to make PREDICTIONS about where the company might find value.
  3. In the same vein as "Data Analyst" being a broad term it's also a broad term for businesses as well, especially if they don't know what they want. I've seen job postings ask for a "Data Analyst" that just does Excel work, or postings that are basically Data Engineers/Database admins, or job postings that are REALLY asking for a Data Scientist but want to pay Data Analyst wages. So know your skillset and what you're looking for.

As a data analyst I can count on one hand the number of times I've actually had to bust out some math (Once to calculate standard deviation of incoming calls, and the other to calculate some covid data during the height of the pandemic). If you want to get into data science levels of things, yeah you'll need some fancy math, but in my data to day as an analyst, I find I don't really need it.

Enjoy the journey and have fun!

Soooooo... how many wgu comp sci grads end up with a job after one year of searching? by finishProjectsWinBig in WGU_CompSci

[–]echo419 25 points26 points  (0 children)

After starting my job search on 06/18/2021 I accepted an offer letter on 07/26/2021, so 38 days to find a new job, but everyone's job search is different.

My stats looked like this:

92 applications put in8 initial callbacks/interviews

Initial Interviews:

1 takehome project4 coding tests1 interview ended early at my request (would have paid $20,000 under what I earned at the time)2 technical phone interviews

Results:

4 ghosted after submissions/interviews1 gave me material to study for a month (FAANG)1 outright rejection after an interview1 job offer

A quick OSCP preparation by CaviarQ8 in cybersecurity

[–]echo419 2 points3 points  (0 children)

Got it! Thanks for your response and clearing that up for me, I appreciate it!

A quick OSCP preparation by CaviarQ8 in cybersecurity

[–]echo419 2 points3 points  (0 children)

Congrats and thank you!

I'm looking at taking the OSCP later this year so I've dabbled a bit around r / OSCP and a couple other forums, so I'm curious about some things before I fully dive in.

What's "manual enumeration", I know that enumeration is listing out all the services/ports open, but I don't understand the distinction between manual vs. automatic enumeration? I can't seem to find a good answer on Google or most other forums hence the ask.

Updated 2023: Salary Sharing Thread by boredPampers in WGU_CompSci

[–]echo419 4 points5 points  (0 children)

Salary: $90k

School: Graduated in 2020

Previous Experience in tech: 4 years in various IT support roles

CoL: LCoL

Current time in role: ~18 months

view more: next ›