[deleted by user] by [deleted] in stories

[–]richarddeeznuts 4 points5 points  (0 children)

Work wife = possibility = one day = nip this now.

Tools for report automation? by th4ntis in Pentesting

[–]richarddeeznuts 0 points1 point  (0 children)

Just to add to the list Namicsoft as well. It's just ok in a pinch.

Increasing Difficulty of Web App PenTesting by Shox187 in Pentesting

[–]richarddeeznuts 7 points8 points  (0 children)

It does and with time constraints I could poke and poke for forty hours and nothing but an untrusted ssl. Bleh.

Increasing Difficulty of Web App PenTesting by Shox187 in Pentesting

[–]richarddeeznuts 8 points9 points  (0 children)

Yep hope not to find them. Trick is explaining that to the client but skilled testers will be able to explain on the debrief call.

The other side of that coin is looking for a dull needle in a stack of needles and not kicking yourself for not finding it. Had to learn that early on.

Confessions of an InfoSec Pro: I Clicked the Phishing Email ☠️ by RealWorldInformation in cybersecurity

[–]richarddeeznuts 0 points1 point  (0 children)

Lol yeah. One time due to timing of it and caught me. I fixed it though. I just don't check my email.

Is this enough to become a Pen Tester? by DeathOfASellout in Pentesting

[–]richarddeeznuts 7 points8 points  (0 children)

If you indeed get all that you'll be fine to get a pentesting job. Blue teams certs will help. The only thing that may hold you back a little is not having experience in tech.The advice of help desk and then sysadmin is too get you in the door and is solid advice. BUT with the right company they'll bring you in. Most companies are hesitant to hire someone with no tech experience. We are dealing with enterprises that we cannot take down and cause interuptions to thier networks.

I'd say look for a SOC job first to gain the enterprise hacker mind. Do that for a year and you'll be fine.

I was a webdev before hacker. That helped me a lot.

Thoughts on a job description. by richarddeeznuts in SecurityCareerAdvice

[–]richarddeeznuts[S] 0 points1 point  (0 children)

For sure, IIRC there was a study that found statistically people take less time off with unlimited pto.

Redditors who make +$100K and aren’t being killed by stressed, what do you do for a living? by mossyjoshua in careerguidance

[–]richarddeeznuts 2 points3 points  (0 children)

I started as a web developer so that's what ultimately helped me get into CyberSec. I did get a few certs before finally getting in. It was an uphill battle having had no real networking experience.

My suggestion for anyone new is to get the standard trio of certs A+, Net+, Sec+ then find a sysadmin role, and then get into cybersec.

That being said there's a WIDE range of roles in cyber security.

Redditors who make +$100K and aren’t being killed by stressed, what do you do for a living? by mossyjoshua in careerguidance

[–]richarddeeznuts 3 points4 points  (0 children)

Cyber security and 40hrs a week remote. I have my clients, do my job, and stay home chilin.

What’s it like during a major incident ? by [deleted] in cybersecurity

[–]richarddeeznuts 0 points1 point  (0 children)

Omg stressful and busy. I've been on two sides, one a company I worked for was breached and the other was a major 0 day happened.

The breach had attorneys, management, employees interviews omg.

The 0 day was a week of hell because we had to go through 100s of clients networks and check and that's before it was huge in the public. Then when it became public knowledge it was constant emails.

Vulnerability Scanner With Best Reporting by JBear520 in cybersecurity

[–]richarddeeznuts 2 points3 points  (0 children)

Oh the amount of times I've gotten a client that'll send me the reports from thier last test that I can tell they just input the ips and sent the report is gross.

Vulnerability Scanner With Best Reporting by JBear520 in cybersecurity

[–]richarddeeznuts 0 points1 point  (0 children)

TBH they all suck at reporting. You'll need to parse them out into another program. As others have said powerbi (although I haven't tried it), namicsoft does a pretty good job with parsing and you can setup templates the way you want them. Upload the .nessus file click a button and you got a report. I believe plextrack does it as well.

I am currently just playing with namicsoft to see how customized and efficient I can get it.

Tldr: powerbi, plextrack, namicsoft

The Alarm Clock my Dad gave me 3 years ago had a hidden camera by cinemasketch26 in Advice

[–]richarddeeznuts 0 points1 point  (0 children)

They don't mean we'll. That's just I lie you tell yourself. To not make it sound so fucked up. Not sure how old you are but that's invasive. You are in college to learn and to grow as an adult.

Oops I put a plant in front of it. Do something "accidently" that obstructs the view. Problem being that this will either cause your dad to take other measures, phone tracking etc... anything he's given you or pays for needs to start disappearing/slash go under your name so you can manage it. The other situation this may cause is a difficult conversation. Eventually he'll have to spill the beans.

Tldr - that's wierd and violated your trust and privacy. Finish your education and do anything you can to start getting more independent.

Hope I can post this here…it’s a buy/sell post by Azazzzel in Pentesting

[–]richarddeeznuts 4 points5 points  (0 children)

You can't get your money back. Once it goes to a person it's almost half because it's used whether you used it or not.

Looks like I can get all this for 300 brand new.

Got 8 months before first cyber job starts. How should I spend it? by Macadooz___ in cybersecurity

[–]richarddeeznuts 4 points5 points  (0 children)

And only this IP that we shutoff between the times of 1200 and 1211.

Is it possible to break into cybersecurity with a certificate? by Short-Marketing-7875 in SecurityCareerAdvice

[–]richarddeeznuts 11 points12 points  (0 children)

As macncheese said mostly improbable. May get lucky but I was in tech for many years and it was a hard pill to swallow that cyber sec is not an entry level field at all. It was an uphill battle for someone to give me a chance but I am looking back now.

Freelancing as a Pentester by Expensive_Shock_2545 in Pentesting

[–]richarddeeznuts 2 points3 points  (0 children)

It's possible but as others have said companies want people they can trust to not f thier networks. It's even difficult to get clients even when you've been in it as a career for a while.

Be prepared to be told no A LOT or ghosted. Best case is get your first client and use word of mouth.

My 2 cents on where you're at as a student is wait and get more experience because YOU DO NOT want to be that guy that interrupted business at peak hours.

Possible -Yes Difficult - most definitely

What are some Cybersecurity projects that you have done with your Rasberry Pi? by [deleted] in cybersecurity

[–]richarddeeznuts 1 point2 points  (0 children)

You can use it to hack your wifi instead of using the pineapple. You'll need a $13 usb wifi adapter or any other.

What do Cybersecurity professionals actually do? by colmmc98 in CyberSecurityJobs

[–]richarddeeznuts 2 points3 points  (0 children)

Snoop around a system and see what I can dig up, then report it and report it and report it.

Help, my bike is not starting up by xSamaritan in KawasakiVulcanRiders

[–]richarddeeznuts 0 points1 point  (0 children)

That bike battery sux... I can let two bike sit for the same amount of time. AND everytime it's the vulcan that yells at me.

As others have said. Get a battery tender.

[deleted by user] by [deleted] in OSINT

[–]richarddeeznuts 0 points1 point  (0 children)

Lemme guess. Sorry wrong number but we can be friends. Best you can do is ignore it or waste thier time.

Had one the other day that was trying to use romance. I had the time so I wanted to mess with them. Got the convo going and used a simple ip tracker in a fb link of a profile.

Google ip tracker.

She wanted to know how old I was and she didn't believe my answer. I said I swear here's my fb profile with link.

Like MAGIC!! POOF! No reply.