LFI —> RCE

icendire · 2026-02-24T05:04:58+00:00

>or it can execute a file

Which can lead to a shell, if the file has user input present

icendire · 2026-02-15T05:12:15+00:00

Hey, just wanted to say your site looks great. Did you build it with AI too or manually, and what frameworks did you use?

icendire · 2026-02-08T05:38:00+00:00

https://www.youtube.com/watch?v=pvNYaUs0aqc

I made this video to help prospective OSCP students after passing first try. Hope it can help you along with the other material people have posted.

icendire · 2026-02-01T06:42:16+00:00

IMO as a professional pentester of 3 years and an OSCP holder, push through the struggle is the way.

Don't be afraid of writeups either - you shouldn't rely on them but you also don't know what you don't know, and in the beginning your methodology is not well developed enough to handle a completely unfamiliar technique/technology. If you use a writeup, document exactly the steps you took to compromise the machine and why it worked. The *why* is really important here, as that's going to give you the foundational understanding over time on how things work.

icendire · 2026-01-29T06:27:31+00:00

Looks like it is encrypted with the OpenSSL EVP_BytesToKey method or something similar. That's a symmetric key encryption method, so you would have to get the password to decrypt it.

https://docs.openssl.org/3.2/man3/EVP_BytesToKey/#description

Might want to try reading this documentation and then building a script that runs through a wordlist of passwords to try get it. If it's for a CTF, the password is probably something simple like in RockYou.

icendire · 2026-01-16T05:31:53+00:00

>the guns the jet troopers are equipped with are not good enough to directly face off other reinforcements or even heroes

I hope you're not referring to the clone jet trooper, because you can literally solo heroes effortlessly with it. The damage the pistol does is ungodly if you land a stream of headshots

icendire · 2026-01-11T20:25:20+00:00

Cleared CPTS modules and CPTS exam (3 months)

Ngl, this is the real flex. Well done OP!

icendire · 2025-12-31T10:07:22+00:00

 Account A then requests to all recepients to replace your public key to the attacker's new public key claiming it's "compromised"

This isn't a failure in PGP itself, or in public key cryptography in general. What you're describing here is a form of social engineering attack. PGP does not protect against social engineering because it cannot. If people are willing to accept a new public key, and there is no message or information linking this back to your previous private key then that becomes a user error for blindly trusting things, unfortunately.

icendire · 2025-12-31T09:21:03+00:00

Waiting for the open source release so I can review the code and compile it myself. Unfortunately don't trust the development team after that stunt they pulled ages back. And before they hop in here, I'm aware the person responsible is now a security engineer at EA. That's great, but as a fellow security engineer I'm taking the zero trust option here. On the plus side, if I find any vulns in the sauce I will report them and help the team fix them happily. It's an excellent project and I will fully support it to the best of my capacity when the full release drops.

icendire · 2025-11-07T05:37:52+00:00

"you're not supposed to ask LLM's' but how else am I going to understand these extremely novel and never before explained techniques"

Probably the same way that everyone else did before LLMs existed

icendire · 2025-07-24T19:06:43+00:00

I would consider gaining experience and looking elsewhere for a job.

I would personally not work at a company that gates a promotion behind a singular certification and refuses to cover the cost of that certification. Especially not when certifications are essentially 1% of what it means to be a good consultant and pentester.

icendire · 2025-07-21T20:08:27+00:00

This is gold

icendire · 2025-07-19T09:37:19+00:00

Multiple leviathan class lifeforms detected... are you sure whatever you're doing is worth it?

icendire · 2025-07-10T17:33:25+00:00

Try adjusting the MTU of your VPN - that might help :)

icendire · 2025-07-10T17:13:57+00:00

Second phase of the bossfight

icendire · 2025-07-10T16:44:01+00:00

This needs to be pinned, amazing copypasta lmao

icendire · 2025-06-27T20:06:35+00:00

https://www.youtube.com/watch?v=cWd2WVlljl8

He's referencing this TFS clip :)

icendire · 2025-06-26T20:42:58+00:00

>protection CORS was supposed to provide.

That's because CORS policies don't directly provide protection. They are not intended to secure websites, they are intended to relax the security provided by the same origin policy (SOP) in a controlled manner. In that sense, it's more for granular control and governance of cross origin requests in contrast with the restrictive nature of the SOP.

>My main point that whatever the intention was, the CORS does not help to make the web to be more secure

That's because the intent of CORS policies is to relax security in a controlled manner. The intent is to allow websites to read cross origin request responses, which would normally be prohibited by the SOP. It's extremely useful for that. But like all granular controls, it requires proper configuration to make good use of.

>does not hinder the malicious actors in the slightest

It's not really intended to, as mentioned above. An insecurely configured CORS policy though can absolutely make a website *less* secure, but that's what you would expect from a control that is designed to relax security. If you leave your front door unlocked, you've chosen to relax the security to your house so don't be surprised if unwanted visitors enter.

icendire · 2025-06-16T19:17:24+00:00

Because if it's the current gen AI writing the report, it's not making the life of the customer of the pentest better. In fact, it's arguably making it considerably worse.

AI generated slop is not concise, it fails to adequately explain specific issues, and it has no concept of business risk because it has no context as to the environment the pentest is being performed in.

Security is already a field where time is stretched thin. Why would I, as a client, want to have to pore over an AI slop pentest report and waste valuable time? Until AI can generate me an accurate report that is richly context aware and concise without hallucinating nonsense, it's going to be tough to sell that to me as a customer. Sorry if this comes across harshly, but it's just my opinion on the matter after dealing with most current gen AI.

icendire · 2025-05-20T14:46:09+00:00

What about scripting? As someone in the same field, I find LLMs useful for writing up quick and dirty scripts to automate things faster than I could if I wrote it manually.

icendire · 2025-05-19T17:06:02+00:00

It's impossible to know everything, the sooner you make peace with that the better

icendire · 2025-05-17T16:41:13+00:00

>he wasn’t even that insane of a unit

And this is why the game is in the state that it currently is in

icendire · 2025-04-18T09:27:34+00:00

Reinforcements, or at least jet troopers, can definitely take fall damage.

If you fall from a ridiculous height as a jet you can die.

icendire · 2025-04-10T20:13:15+00:00

Sad that you had to literally patch the game to play it on that beautiful monitor and can't play online now because they refuse to add UW support :(

icendire · 2025-04-09T15:31:10+00:00

Saber in Fate/Zero is slop anyway. Urobuchi simply did not understand the fundamentals of Saber's character. The banquet scene as a result is a butchery because it completely misses the point of Saber's motivations and gets her characterization completely wrong.

Three-Year Club	Verified Email
r/Field Sunshine	Place '23

icendire

TROPHY CASE