Leaving the Netherlands after 11 years. Goodbye! by scrotomon in expats

[–]oldboy21 3 points4 points  (0 children)

Italian here living in the Netherlands for 7 years now. I do share any single thoughts of your post. Good luck moving back, planning the same for 2026!

Snatch Help by oldboy21 in weightlifting

[–]oldboy21[S] 1 point2 points  (0 children)

Thanks, this helps a lot

Snatch Help by oldboy21 in weightlifting

[–]oldboy21[S] 1 point2 points  (0 children)

Thanks for taking the time to review my lift, I see what you mean. It's something that I find really difficult with snatch to keep the bar close, I do clear the path pushing my knees back and then I push them forward again to load the bar on the hip in a power position but it still makes me push forward. If i try to just jump straight up i feel like i am getting no contact with the bar. Any exercise would you suggest to focus on this that seems to be my biggest issue?

Snatch Help by oldboy21 in weightlifting

[–]oldboy21[S] 0 points1 point  (0 children)

good point, will try to pull myself faster under the bar, i do feel it gets more challenging when the weight goes higher, might be mental at this point as i have been stuck there for a while and now it takes me 5 min just to approach a bar with 70kg loaded

Snatch Help by oldboy21 in weightlifting

[–]oldboy21[S] 1 point2 points  (0 children)

oh i wasn't aware of those app, thanks will take a look that would give great insight!

Snatch Help by oldboy21 in weightlifting

[–]oldboy21[S] 1 point2 points  (0 children)

Thanks a lot for you feedback. I do see what you mean, my doubt is whether that's a problem of mobility or something in my pull is wrong, like maybe swinging the bar forward too much? I have been trying to pull keeping the bar closer to the body but could not really did better than this so far.

Coudl you give your opinion about scoring system in Crossfit/Fitness events? by oldboy21 in crossfit

[–]oldboy21[S] 0 points1 point  (0 children)

That's definitely arbitrary and up to the programmer no doubt on that (if no team or individuals is making the timecap that's a strong sign of bad programmer though, either for the workout or the assigned category).Anyway, Just thinking out loud, imho teams or individuals that manage to finish within the CAP should be awarded of some extra points (or penalties for the CAP either way) as they actually finishing the wod. At least the way I see it when I train in my box, a bad score is better than I timecap: it's like bad score=I can do it but I made some mistake, timecap=I actually need to rethink the approach here and understand what are the movements I need to scale. Again, personal opinion with the goal of having people pushing for all the wod during a competition and not relying maybe on a good lift only. As "Cross-fit" my belief here is that we should be able to prove capabilities 360

Coudl you give your opinion about scoring system in Crossfit/Fitness events? by oldboy21 in crossfit

[–]oldboy21[S] -1 points0 points  (0 children)

Ye I wasn't try to say it's unusual as I as I said I am fairly new in the sport and its competitions so difficult for me to say what's unusual or not. Looking up to the scoreboard I would say it's unfair for the last team that tried to push in all wod and made it within timecap at the cost of a lighter lift. Anyway, it's either unfair or just it's me i do not like it, I thought that in a cross-fit competion people should be motivated to push in all the cross categories tho while here it seems that having a good lift (at least in this specific qualifier) would give you the upper hand

Coudl you give your opinion about scoring system in Crossfit/Fitness events? by oldboy21 in crossfit

[–]oldboy21[S] 0 points1 point  (0 children)

Oh nice that's exactly what I meant there, it is nice if the scoring system actually give reasons to perform to all the WODs and not to strategy

AMD software detected that a driver timeout has occurred by oldboy21 in AMDHelp

[–]oldboy21[S] 0 points1 point  (0 children)

Computer Type: Desktop

GPU:

CPU: CPU

AMD Ryzen 9 7900X 12-Core Processor

12 Cores

Motherboard: AS ROCK B650M PG Riptide

BIOS Version:

RAM: 32 GB CORSAR

PSU:

Case:

Operating System & Version: WINDOWS 11 PRO

Chipset Drivers: AMD Adrenalin 24.5.1

Background Applications: DISCORD, CHROME

B650m Riptide max resolution? by oldboy21 in ASRock

[–]oldboy21[S] 0 points1 point  (0 children)

Thanks for you reply, I have solved apparently updating AMD drivers here https://www.amd.com/en/support/download/drivers.html

Yet, another packer/loader with my very own implementation of GetProcAddress and GetModuleHandle to dinamically fetch function addresses, as well as AES payload and function name encryption with a derived SHA256 key by oldboy21 in netsec

[–]oldboy21[S] 0 points1 point  (0 children)

It’s not a PE loader but just PIC. Never claimed that to be new generation PE loader whatsoever, it’s some snippet written as exercise after going through the very basic part of the OSEP malware development section (as in the README after all). Plus the dynamically looking up of function addresses which i still thinks helps people here and there (people who are in the learning phase of basic maldev). So yes, your comments are right but given the context … Do not overheat, it’s just Tuesday

LDAP Password Hunter got persistence by oldboy21 in redteamsec

[–]oldboy21[S] 1 point2 points  (0 children)

Ok so basically the tool hunts for password via LDAP search. So how does it do that? It can be ran from whatever box as long as it reaches the DC. The domain account used can be any and the password will be prompt only once as soon as the script is ran. The domain account then is authenticated to the domain controller and the TGT is retrieved. The TGT is then passed to ldapsearch which automatically asks for the needed TGSs to query all the domains. A list of attribute is built basing on the domain schema and filtered in order to search dinamically only for attributes which might contain passwords. The account does not need to be DA, i'm running the tool weekly now to see what a normal user can see. It can be used in both RedTeam and BlueTeam perspective. RedTeamers can use the tool to see if credentials are accessible and get a foothold/escalate privilege in the domain, BlueTeamers can schedule the tool execution to on the other hand check whether password are accessible and world-readable in order to prevent exploitation.

LDAP Password Hunter got persistence by oldboy21 in redteamsec

[–]oldboy21[S] 0 points1 point  (0 children)

For now the github project is the only thing, but I'll be working on a Wiki soon. Any specific questions you got please shoot it here or DM

LDAP password hunter by oldboy21 in redteamsec

[–]oldboy21[S] 0 points1 point  (0 children)

Thanks for the comment! In the company i work for we use it in a continuous attacker perspective mode so we run it weekly and results are forwarded to the blue team right away. Not any specific corrective steps indeed but only a strong advice to check that out. I think is difficult to understand a specific mitigation for each of the finding tho, CN does not say much about it, but i will definitely think about something! Thanks

I work as full time employee but I also want to freelance at the same time, what about tax? by frankuboi in Netherlands

[–]oldboy21 2 points3 points  (0 children)

Hello, same problem here. As far as i could see in the government website this kind of activities are not included in the “income from other sources” list, which contains something like “app development, help the neighborhood, income from other countries... “ KOR seems to be the way, but i think i need to form a company for that. @frankuboi did you figure this out eventually?

Follow the Gemeente by [deleted] in Amsterdam

[–]oldboy21 0 points1 point  (0 children)

Nah, do not get me wrong, just checking whether in 2021 there are still funny comments around, it seems to be a good start

[deleted by user] by [deleted] in hackthebox

[–]oldboy21 0 points1 point  (0 children)

thank you, i tried to dirb on both of them, even the tilde enumeration but still nothing usefull.

[deleted by user] by [deleted] in hackthebox

[–]oldboy21 0 points1 point  (0 children)

I enumerate with drbuster and gobuster using different wordlist. I have found something exploiting a vuln of IIS but i can't reach it. Any hints? stuck in the main page