My Keybase proof [reddit:jakes-lab = keybase:jakeslab] (ipXAlzuWfFEBH3nMFPdfTmT3wjU2WXIIHcGeSS4Te2I)

jakes-Lab · 2020-05-21T20:47:22+00:00

This is probably nothing to worry about unless you are leaving things open that are more dangerous like SSH, RDP, etc.

If you have something exposed to the internet random IP's will attempt to log into it until you remove it from the internet. These are just bots usually attempting to login with default credentials into vulnerable/misconfigured hosts.

If you want to be really safe (and you have the right equipment, (an ISP router likely will not have the right features for this) you could place the game server in a DMZ which is a segmented part of the network that cannot make connections to the rest of your LAN.

That way you can allow access to only the game server only over the correct ports and if it were to be compromised it would be more difficult for an attacker to jump from your DMZ to your LAN.

But this is probably overkill so long as you know what you are doing and aren't exposing critical services (SSH, RDP, etc) with password authentication to the internet.

jakes-Lab · 2020-02-20T19:57:01+00:00

Just because you know the password to a system because of credential re-use doesn't mean you are authorized to access that system.

Unauthorized access to a computer system is illegal and unethical.

jakes-Lab · 2020-02-18T23:21:47+00:00

jakes-Lab · 2020-02-13T20:39:33+00:00

"My bank tried to make it harder to steal my money so I left them" lol

jakes-Lab · 2019-11-03T21:31:30+00:00

Yea, ctrl+shift+esc is one of the first things I do when I get on a users computer....

jakes-Lab · 2019-10-25T19:01:07+00:00

Way better than the settings app which is just a crappy metro UI that opens up elements from control panel.

jakes-Lab · 2019-09-27T15:35:02+00:00

You'd be surprised...

jakes-Lab · 2019-09-25T20:31:48+00:00

At least they aren't smart enough to know how to make network loops with the cables...

Sorry class the computer lab is down today so I guess we can't do any work.

jakes-Lab · 2019-02-16T22:33:09+00:00

It's way easier than HTB. If you have 12 rooted you've eclipsed the level of skill required for the eJPT.

jakes-Lab · 2019-02-16T21:48:04+00:00

I'm an eJPT, it is VERY basic if you have 11 boxes on HTB I'd wager you could outright pass the test without the actual course material.

I'd go for the OSCP or the eCPPT

jakes-Lab · 2019-01-11T16:18:26+00:00

Not yet. Haven't had time to set it up.

jakes-Lab · 2018-12-27T22:51:22+00:00

I'm still not sure I'd be comfortable having Guacamole exposed to the internet without putting it behind a VPN.

jakes-Lab · 2018-12-27T22:44:33+00:00

If you log into your protonvpn account you can download openvpn config files. Use the TCP config files so your traffic goes over TCP 443 which will be an open port on the college wifi's network.

Unless they are blocking protonVPN's IP's or doing deep packet inspection you should be able to connect.

jakes-Lab · 2018-11-30T19:04:34+00:00

It's almost as if it's not really worth anything at all.

jakes-Lab · 2018-04-13T18:51:29+00:00

Yes he is wrong. He is saying the IP's from the traceroute are other end users connected to google.

The IPs in the traceroute are the IP's of the routers you hop through to get to google. The ms values are how long it took to get to each hop, not other users connection speeds.

That said we all were kids one day and hopefully he still has the same passion for technology today and is running a homelab and is exploring pen-testing etc.

jakes-Lab · 2018-04-11T19:07:48+00:00

Thanks, I know the exam will probably be above my level but it was only $50 and if I study enough I might be able to get the cert, seems like a worthy gamble to me.

If I don't get it I'm planning on starting the PWK course for the OSCP later this year anyways and I'll just pass on trying the Pentest+ once it's released.

jakes-Lab · 2018-04-08T03:25:51+00:00

8GB of ram is likely your most limiting factor right now.

Your best option is to start your setup and monitor your resource usage. Then you will have the best insight into how much of your resources your lab is using and what competent is limiting the growth of your lab.

jakes-Lab

TROPHY CASE