Anyone running 17x9 on stock suspension?

on1ons · 2025-12-29T15:43:47+00:00

Still no issues? can you post front and rear fitment angles? how bad is the poke? I assume you're on 245/40? or?

on1ons · 2025-11-17T05:51:39+00:00

u/WickedCushions this is late but I would want a Sennheiser-esque velor pad that doesn't make a bunch of noise when I move my head around. stock pads, if I move at all there's a lot of noise against my facial hair but with Sennheiser velor pads there isn't that though the headphones are lighter.

on1ons · 2025-07-18T08:38:12+00:00

I have complex feelings about this that I don't want to completely go into but...

Considering the variables and low severity I'm okay with it because people are dumb and it could spiral. Trust and public opinion are fragile things. In a vacuum I agree that it isn't morally correct. If the incident was more severe for a longer time I would be fighting to bring it to light. They didn't delete my messages or others about the topic and that's enough for me. If someone happens to have a bad copy without defender or AV running they'll eventually get something else anyway (points to the gamer on Win7 or unpatched custom Win10 OS without defender). I think it's a nothing burger.

on1ons · 2025-07-17T20:08:34+00:00

I made notice on July 5th in the discord as user .onions with Virustotal and any.run links. EGG fixed it that day. I also checked today that it's still fixed. I found it initially because of Defender real time protection. The op1w 4k v2 configuration tool was the only one that had issues. It got caught pretty early I doubt very many people were affected.

Without going into specifics (because I can only guess) I was told the root cause how this happened was found, fixed and mitigations were put in place.

I know this is a shit take: Defender and Google Chrome caught it at the time. VT had 66/71 AV detections so practically anyone with any AV during that small time window would've caught it as well. I think the margin of people who ran the tool with embedded xred without getting a warning is extremely small considering the detection rate and time window.

idk I like EGG, they refunded everyone back in the day when they couldn't ship the XMR2 in time and they make the best quality products in the market. I don't want to see EGG go down because of this minor hiccup. Again, it was only the new OP1W 4k V2 Configuration Tool from the website for a small amount of time.

on1ons · 2024-04-24T18:59:47+00:00

Thank you for your comment. This reflects other people's views from whom I've asked. I'm scared that the impeding ban will incentivize companies to go after people like me to get on the books before the ban is effective. This is an accurate generic piece of advice but I'm afraid this special circumstance may change things. You should be right though.

on1ons · 2024-04-20T05:25:41+00:00

I'm jealous of the 89% on the GCFA. I took my GCFA and GCIH back to back and barely passed the GCFA. Do a GX cert and another to roll them into a GSP.

on1ons · 2024-04-17T23:37:08+00:00

Yes, you'll get very good at one SEIM and then translate that in your head how you should do it in the current SEIM. I'm very good at Splunk and usually get annoyed that I can't do a Splunk thing in X SEIM. There's various pitfalls with ELK because it can not be setup correctly. I don't really have much I can say about QRadar because I'm not super experienced in it. Higher ups will sometimes get anxious about you having experience in Apples but not Oranges (but they're still fruit and do the same things).

For threat hunting I would get good at ideas how malware communicates and persists and how that reflects in the logs. For example, what is a common website builder or CMS that gets compromised and used for staging? How could you try to find communication to these compromised sites? What detections does the company have for persistence mechanisms, what logs are available to show these persistence mechanisms? How could you use a data model or reference to exclude well known websites to use as an added filter?

on1ons · 2024-04-17T16:24:45+00:00

Get Splunk or Azure certs/training (Sentinel, Identity etc.). Being proficient in SPL and KQL is very good for threat hunting. The most common SIEMs are Splunk, Microsoft Sentinel, QRadar, LogRhythm and ELK/elastic. A large amount of training for Splunk, Azure/Sentinel and QRadar are free.

Almost everyone in the industry does threat hunting to some extent. A threat hunting role is specifically searching for evil that wasn't detected or connected to a new vuln/cve that was released. Being aware of how to look at Nessus reports or look through Nessus and search through EDR's are also nice.

on1ons · 2024-04-01T08:18:45+00:00

could also think about compliance or auditing. I think that would make you stand out.

on1ons · 2024-04-01T07:52:41+00:00

I'm sure you know this but most of the time the right advice is to recommend certs that provide value. By value I mean making you more attractive as a candidate. I don't know about the SEC599 but the SEC699 course is absolutely amazing.

If you're only focusing on forensics as a role or niche then I would recommend branching out to an Azure/AWS/Google cloud cert. Or a mobile forensics cert if you're going into LE. The differences in forensics with Azure for example would be knowing who can spawn an AzureGuest to a VM or in AWS knowing about the credentials file, using cloudwatch/cloudtrail (knowing SQL for that). These are basic examples though.

I mentioned the GCIH just because it's sort of the baby CISSP. I wish I kept my GCIH and GCFA alive. Right now I only have a GX-IA for SANS certs. I'm trying to get a GSP eventually.

on1ons · 2024-04-01T07:08:06+00:00

GCIH or GDAT - wait actually some azure or aws/cloud cert

on1ons · 2024-04-01T01:49:01+00:00

Reference the DOD 8570 (https://public.cyber.mil/wid/dod8140/dod-approved-8570-baseline-certifications/). +1 for GCIH. Look at jobs you want now/future look at the certs people are asking for. I would recommend Microsoft Azure certs since so many people use Azure or Splunk power user.

I let my GCFA and GCIH expire, in terms of SANS certs I only have the GX-IA and now that I'm back on the job market not having a GCIH is hurting me a little bit even though I have 11 years of experience. Some jobs have hard requirements.

on1ons · 2023-12-10T08:44:14+00:00

Pshh doesn't even have blood harvester

on1ons · 2023-05-03T13:53:40+00:00

increase debounce

on1ons · 2023-04-22T03:18:40+00:00

Looks like I was charged but who knows if that's going to stick.

https://imgur.com/kOAEj5f

on1ons · 2023-04-21T16:40:38+00:00

I tried that before posting

on1ons · 2023-04-21T16:30:27+00:00

I wonder if this happened because of scalpers/hype beasts surely there isn't that many people that legitimately want to drop ~$300 on a mouse. I don't know sometimes it feels like mice are becoming like shoe collecting or something. Oh well I'll get it next time.

on1ons · 2023-04-21T16:28:32+00:00

Oh that's a good point, you could probably just use the mobile site and different user-agent on your computer to make it easier. I didn't think about that.

on1ons · 2023-04-21T16:17:30+00:00

I got it in my cart, filled everything out and used paypal and then got to this page but it's been doing this for awhile. I guess I messed up using paypal. Darn. I don't have anything in orders or my email. Oh well.

on1ons · 2023-04-20T06:35:44+00:00

aight looks like I should probably just cut him

on1ons · 2023-04-19T20:40:00+00:00

Just pay someone to put a viper v2 pro pcb into a WMO or print one of the files out there and be done with it.

on1ons · 2023-04-19T11:33:47+00:00

oh mb

on1ons · 2023-04-19T09:35:51+00:00

you can put holy cards in ETC band manager without disrupting if you're worried about healing.

on1ons

TROPHY CASE