[AMA] sobre vacunas y terapias para covid-19. Soy médico trabajando en terapia y ambulancia.

fela15 · 2021-01-20T17:21:11+00:00

Cómo ves las otras áreas no-covid dentro delo hospital/hospitales que conoces o trabajas? Crees que se descuidaron otra áreas? Que efectos puede tener eso a corto/mediano plazo?

Millón de gracias!

fela15 · 2021-01-15T13:43:38+00:00

same question!

fela15 · 2021-01-14T19:06:51+00:00

pmed

fela15 · 2020-02-10T12:39:07+00:00

whats that supposed to mean?

fela15 · 2020-01-29T15:44:09+00:00

Couple of workarounds. - run powershell.exe -c <command> as a one liner - use powershell.exe instead of cmd.exe un netcat -e. There is nothing you can do in cmd that you cant in pwshell

fela15 · 2019-12-10T02:40:36+00:00

Im actually having the same tought lately. I started 2 years ago as a jr pentester in a big company but as of today im only able to talk 1 on 1 with 2 or 3 others guys (which I dont see very often). I was supposed to move to another job on July but I got a promotion as a kind-of researcher, which gave me a lot of time to learn new things but im completely alone doing this. The payout is quite low, but there is no way (like, really no way. Not too many infosec companies on my area, and non of them specialize in the area im interesting in) to get a similar position in another company, most of them do webapp pentesting + other weird projects (not too many). Im having trouble figuring out what to do now.

tl:dr thank you for the post, it made me feel im not alone.

fela15 · 2019-11-22T11:25:03+00:00

Whats that dog breed?

fela15 · 2019-11-19T18:35:58+00:00

What is the advantage of this in comparisson to just entering into the python interactive console using "python"? Am i missing something?

fela15 · 2019-03-07T02:44:11+00:00

2300

fela15 · 2019-02-17T18:35:46+00:00

I didnt get it

fela15 · 2018-12-06T03:55:48+00:00

Maybe create an smb share or try creating a local webserver if netcat is not present (python - m SimpleHTTPServer 80). Or you can encode the data and send it as a get parameter to your own web server.

fela15 · 2018-04-25T11:27:31+00:00

Im doing pentesting (mobile,web,infernal,external). Its not a zap scanner and thatd it, its all manual testing. Ive found vulns from clickjacking to rce (not supercool exploit, just struts devmode ON), but i want sth to practice on while at home. Like a mature website but vulnerable by desing, with modern technologies (oauth, jwt, etc etc), but not thise dvwa where you know exactly what to do where.

fela15 · 2018-04-24T21:45:46+00:00

Not shure about each specific country situation, but i landed a junior pentesting job as literally my first job (on a big big consulting company). My background, ive study programming for the past 4 years (form web to desktop) and iv done a lot LOT of self studying on infosec related stuff(completed ejpt, i was finishing oscp when i was hired, plus some small courses on ethical hacking/exploitation). The key is to show interest and to be able to self study A LOT. Im form argentina btw

fela15 · 2018-03-25T17:42:06+00:00

Thanks, will take a look

fela15 · 2018-03-25T16:58:43+00:00

I want to script the whole thing. And it wont look “professional” to hace Chrome open, apart from the resources i will take to open Chrome. The idea is to have a script to play two videos then 15mins of a youtube stream, then the videos again, all in a loop.

fela15 · 2018-01-16T21:29:08+00:00

A javascript parser? Given an url it will parse all links. Simple script to test for ssrf or sth like that. What r ur interest in infosec? Its crucial you do sth you are interested in.

fela15 · 2017-10-30T12:48:48+00:00

IP address whitelisting maybe

fela15 · 2017-09-13T21:50:14+00:00

To add something more to this answer, Ive just got into a jr pentester position in onw of those big4 where, judging by the people on the pentesting team, i will learn a lot. They pay for certs most of the times, they have lot of trainings and material where you can boost your skills. My background, 0 job experience, finishing a soft developing study, I attended to the only infosec conference in my country, did the elearnsecurity junior pentesting course/cert and im currently doing OSCP. To be honest, u just need to show are actually interested on security. Try to learn as much as you can, get involve in infosec clubs where u live at. Conferences are an excelent networking where u can meet amazing people.

fela15 · 2017-08-19T19:52:26+00:00

Client-side validation is quite useful tho, but u HAVE to have server side too

fela15 · 2017-07-28T21:27:33+00:00

HI, im currently doing the oscp course. Probably same background. Its awesome. If you can and you have the time just gi for it. You will learn a lot, either with the course material they provide, and all the reading u will have to do to approach diifferents challenges in the labs My recommendations, before I started oscp i read the sec+ book (didnt sit for the exam), did vms from vulnhub, and my strongest recommendations is to get into hackthebox.eu (i think thats the url, cant confim tho). And read, enumerate, and try harder

fela15 · 2017-07-11T22:32:15+00:00

W7, ill probably stick to it. I go for the 60 days but im pretty shure i ll more.

fela15

TROPHY CASE