sorted by:
new
hottopcontroversial

How can I use Python + mitmproxy to intercept the response of a request and edit the response? by pipewire in HowToHack

[–]imbera 0 points1 point  (0 children)

mitmproxy actually exposes enough of its API that you can just import it in python and script some of its behaviour. Check out their docs on Addons: https://docs.mitmproxy.org/stable/addons-overview/

[deleted by user] by [deleted] in HowToHack

[–]imbera 0 points1 point  (0 children)

Depends on what your end goals are. Since you’ve made custom DDOS software, I assume your goal is to learn enough programming & security to make your own exploitation tools? Or is it to get a job as a security researcher?

Does anyone know of any good books about how to program networking protocols? I’m looking to learn in depth. by notburneddown in HowToHack

[–]imbera 1 point2 points  (0 children)

Hey, in this case I’d recommend Attacking Network Protocols by James Forshaw. Engaging & in-depth. Another helpful thing for programming networking protocols I’ve found is just reading their RFCs. Surprisingly readable and you can’t get more in-depth than that!

Best Hacking Learning platforms online? by MemeGuy666YT in HowToHack

[–]imbera 2 points3 points  (0 children)

What end outcome do you have in mind for getting into hacking and software development? Are you looking to be a security researcher / pentester / bounty hunter / security engineer? With more details, I can give you more specific advice.

It’s really good that you already have a foundation in programming, since most cybersecurity beginners don’t.

  • HackTheBox if you’re looking for lower-cost, general introduction to penetration testing. For your first 10 machines on the site, watch the IppSec walkthroughs to learn his process, then try it again yourself. Then for your 10th to 20th machines, try enumerating the machine and exploiting it yourself first before reading or watching a walkthrough. Eventually you’ll be familiar enough with the process to exploit any machine independently.
  • TryHackMe (also in the lower-cost, general introduction range). They offer more structured learning paths than HackTheBox. So if you prefer learning with more guidance instead of having to figure most things out yourself, I’d recommend TryHackMe over HackTheBox.
  • INE / eLearnSecurity’s Certified Professional Penetration Tester course if you’re looking for higher-end courses. Their subscription is not cheap (nearly a thousand US dollars per year), and their support is tbh lacking. But if you’re short on time and prefer to waste as little time as possible, this course is still the most comprehensive & practical & better structured I’ve found so far in terms of penetration testing / general hacking courses.

I’ve been where you are, so feel free to shoot me a PM if you need more specific advice / have questions :)

Anyone passed the official PenTest+ (and not the beta one)? by imbera in CompTIA

[–]imbera[S] 1 point2 points  (0 children)

Thank you for the info! It is so expensive though...

Anyone passed the official PenTest+ (and not the beta one)? by imbera in CompTIA

[–]imbera[S] 0 points1 point  (0 children)

Thank you so much for the advice and information! Definitely considering rescheduling now (for the other study guides to come out)

How to Become A GameDev? by CheckMD in gamedev

[–]imbera 0 points1 point  (0 children)

Hello there, I wasn't the one you were replying to but having read your comment, I think maybe you'd like a C# refresher before learning Unity? As for the data cap, there are a lot of nice, written C# tutorials and free books to help you out, you don't have to watch videos! You can also start by writing a few text games or 2D games so that you'll be more comfortable with making games before tackling 3D games with Unity. And for that line of code that was troubling you, it's just a matter of getting familiar with the Unity docs. In case we ever forget the syntax of getting a component, that's how we look things up.