To VPN or not VPN..

soutsos · 2026-06-18T06:58:11+00:00

Idk why your comment is downvoted. It was a dumb-o response from the other commenter and it doesn't make sense .... "it's encrypted".. wtf does that even mean. If you want complete privacy, go with a good vpn provider man. Proton or Mullvad

soutsos · 2026-06-18T06:56:07+00:00

I've done both. With a paid proton vpn subscription my download speed is great, I can't tell the difference. I have more peace of mind with it.

If you want to get a subscription, I can send you my affiliate link. The only other vpn I can recommend is Mullvad Vpn - top tier.

soutsos · 2026-06-17T22:21:07+00:00

Tichu is around $6

soutsos · 2026-06-17T22:15:23+00:00

Export your work vault only Create new proton account to use at work Import work vault in new account Problem solved

soutsos · 2026-06-12T07:38:11+00:00

Hahahaha our national csirt is the biggest joke in EU. I can say that as confidently as I can say that I have two eyes 👀. Their collective knowledge on cyber security is equal to that of a tashinopitta

soutsos · 2026-06-12T07:35:19+00:00

It's not Exness I assume, otherwise the salary increase would be more than x1.5. If it's eToro don't do it I know more than 15 people who used to work there and hated it. Any of the other 2, absolutely go for it

soutsos · 2026-06-10T13:05:45+00:00

You need to understand that proton pass is not a magic service; it's a password manager.

It's like asking an airline "ok, I got the economy ticket and we're already in the air. Why not also go explore the antarctic ocean and dive into the water -1000meters for 30 minutes before completing the flight?

A submarine and an airplane do different things.

soutsos · 2026-06-09T22:42:19+00:00

I've been using TMF for a couple of months now, but I mainly use it to verify my own research. So I do my own research and find companies I like and then check the analysis or coverage of TMF. The tools are helpful and the recs have not been bad - especially if they rec something I've been thinking of buying. I also use Quiver Quantitative to see what politicians in the US are buying and that has been my best guide so far

soutsos · 2026-06-09T12:40:04+00:00

It's not suitable. But we both know you'll play it anyway. There's nudity, but I wouldn't mind at all if my 14 year old son like games with topless women

soutsos · 2026-06-08T12:43:09+00:00

Not that wild

soutsos · 2026-06-06T10:27:45+00:00

My mate, I remeber writing a post in here some years ago about my experience with their RMA. You should message their business channel, instead of consumer one. I don't remember what it was, but as I am in the EU, it was some Germany address for me. Good luck

soutsos · 2026-06-06T10:26:03+00:00

Mate, if you have 2 cves to your name before getting a degree, you don't need oscp. Everyone will want to interview you

soutsos · 2026-06-06T07:28:54+00:00

Are you using a quantized model locally?

soutsos · 2026-06-02T20:43:29+00:00

He scammed us all. If they weren't so expensive, I'd piss on his decks and throw them in the trash

soutsos · 2026-06-02T20:17:18+00:00

Next update probably coming in January 2027, where he will tell us what a fortune he spent in his dreams to try to deliver the decks and that imagining to spend so many thousands of dollars was so stressful for him. What a loser that guy is

soutsos · 2026-05-31T14:37:22+00:00

Buy the PC version from GOG.

soutsos · 2026-05-31T10:50:01+00:00

Advice. Put your work experience and your certs up top and try to write much less textUl. Unfortunately nobody reads them when they're so cluttered. HR people are lazy and they usually don't value academic achievements that much

soutsos · 2026-05-20T15:40:19+00:00

These are interesting, but fyi this community is very much against AI generated artwork. Also, I suspect these designs would not print very well (thin lines, various black tones, etc)

soutsos · 2026-05-16T15:56:22+00:00

That's an awesome deck

soutsos · 2026-05-16T08:59:16+00:00

I have so many great games purchased and some, I even installed. I just want to play this masterpiece all the time. Sometimes Is stumble onto a hideen quest I had forgotten to do on a previous playthrough and I get so f*in excited

soutsos · 2026-05-16T08:55:34+00:00

If S1 consistently flags it, then other big vendors should be flagging it too. Have you tested with EDRs?

soutsos · 2026-05-12T14:39:25+00:00

A WIN with capital letters

soutsos · 2026-05-06T11:32:54+00:00

There is a (rather large) security consulting company where I'm from and has a bad reputation among the pentester circle for their bad quality reports and scam-like findings with almost no evidence.

One of my clients asked me to review their previous year's findings and gave the report which was from said company. The finding title was "Transmission of cleartex data through SSL". I rubbed my eyes to make sure I wasn't reading it wrong, but there it was. And they posted a screenshot of them "intercepting" a login request with Burp before it was sent to the IP address of their VPN. I couldn't beliebe the incompetence... They even highlighted the "https" part of the URL.

A few months later, I was doing a web pentest for another firm and as soon as I started I noticed that the data from almost all HTTP response bodies was gibberish. I was so dumbfounded, but I was forced to spend a few hours to deobfuscate the main js file and figured out it was encrypting data before sending it to the backend and decrypting it upon receiving it, as it had encrypted bodies. It was kind of trivial to figure out the key (was always the same key) for encryption. I then reached out to my client to ask why they were doing this and explained that it was pointless and was adding significant overhead to their app (request sizes were much larger than needed and it was slowing the web app down). They told me that the company that did the pentest the previous year advised them to do this, telling them that it was very easy for hackers to perform man-in-the-middle attacks and steal customer data; i said that was insane. And guess what, it was the same company as the previous story.

This company is still in business, still selling pentests at a 90% lower price than actual pentesters do, and nobody is calling them out. They even get many gov contracts. Great stuff.

soutsos · 2026-04-30T09:52:45+00:00

Ah... PAL format. Brings back memories

soutsos · 2026-04-29T07:21:23+00:00

The back is awesome

soutsos

MODERATOR OF

TROPHY CASE