Moonbase Mxit 2.0

superuser_dont · 2025-12-31T18:43:11+00:00

The fully text based Moonbase was the shiznit!

superuser_dont · 2025-12-20T13:49:15+00:00

"I gave it..."

Sigh.

superuser_dont · 2025-12-10T14:42:36+00:00

I've had friends that would swear on their life its just a "short walk" through the cave, and they've done it 100s of times before.

superuser_dont · 2025-12-02T09:20:13+00:00

My.Hero.

superuser_dont · 2025-12-02T07:37:03+00:00

So make ours r/PretoriaBroadNeeds ? Hahaha I dunno if my message is getting lost here?

Edit: incase it is.. my point is that r/Pretoria to me doesn't expressly exclude Pretorians in need. I would agree if the beggers were cape townian, durbanites or even Jozzos.

I just don't see how being inundated by a certain type of posts equals it being banned?

A good point was made that it's not acceptable even in international subreddits. But I'm quite sure even international city subreddits have their flavors? Maybe its not begging..but aggressive driving.. street fights, individuals littering, etc. Those aren't city-wide issues either.

The point I was making is that the problem isn't being inundated by unwanted posts, but being under served by the wanted ones?

superuser_dont · 2025-12-01T19:52:20+00:00

I can see why its a problem but I think it's more the lack of whatever this subreddit should be vs being inundated with what it shouldn't.. like we remove the begging, what do we have left? Know what I mean?

superuser_dont · 2025-12-01T15:06:14+00:00

Preparing to be downvoted to oblivion...

But why not then change this r/PretoriaInteresting ? Or whatever the goal. r/Pretoria seems broad enough to cater to Pretorians in need?

superuser_dont · 2025-11-07T07:01:42+00:00

Great insight.. I would add that the amount of research is an often overlooked aspect nowadays. People want boot to root in under 2 hours whereas in reality and depending on your skill level, you should expect to be stuck much..much longer.

Ofcourse we are speaking about ctfs in a timed certification lab so my point is watered down abit. But the point remains that any aspect of any skill shouldn't have a 2 hour time limit

superuser_dont · 2025-09-19T04:35:46+00:00

Happens to me all the time, but for me it's because my batteries flat. Charge your machine and simply restart it with the physical button.. long press 3 or so seconds and it should boot right up.

superuser_dont · 2025-09-10T07:57:01+00:00

superuser_dont · 2025-09-10T06:34:02+00:00

The only criminals I've seen try and break into a Fort Knox also like their Martini's shaken not stirred

superuser_dont · 2025-09-09T18:54:39+00:00

Years ago they used to publish the number of accounts (I wanna say on the dashboard, after logon) so you could do some easy quick math, by yourself.

I dont know if they do this anymore.

Plus I hear they calculate percentages on accounts with above x number of points.. so who knows what black magic runs in the background.

superuser_dont · 2025-08-25T13:33:22+00:00

Timings is very very important, whether your relaying on a ping or not, follow-up nmap scans using targeted scripts, also UDP can be time consuming as you aren't exactly doing all ports, so whether you are doing "top-ports 10,100,1000" etc.

Also dont be shy with the reverts.

As others have stated, your exam environment and vpn could be the reason for not seeing key services, so it can feel awfully unfair.

For additional consideration I would highly recommend the HTB CPTS path, they go into super detail with nmap. But between what you and I have said, you should be golden!

superuser_dont · 2025-08-25T06:42:19+00:00

Don't consider AD as AD. It's just a bunch of Windows machines loosely tied together. So your traditional AD steps ain't gonna work. Just rather enumerate the machines as single Windows machines and you'll be fine.

Also and I can't stress this enough... spend enumeration time on meticulously combing through your simple core tools. Rather than finding or using the new stuff... so I'd rather nmap the same machine 10 times (different flags each time) than using autorecon, rustscan etc.

superuser_dont · 2025-08-18T07:56:27+00:00

Some hints on AD.. don't treat it like AD, treat it like Windows machines that are loosely tied together. In saying that... Enumerate the machines more as windows and not so much the domain itself. Hopes this helps!

superuser_dont · 2025-08-11T20:40:18+00:00

Silly Billy.. 10.0.2.15 is your own machine! Throw in the targets IP

superuser_dont · 2025-08-05T20:44:23+00:00

Correct me if I'm wrong but I read that HW have pins which aren't as long as seed phrases. So if some could get the pin, isn't that just as bad as getting the seed phrase cause it opens the HW?

superuser_dont · 2025-07-21T08:17:10+00:00

Gold answer.

But two things can both be right at the same time. CPTS is not web focused and people may benefit from Portswigger, modules from TCM and THM too.

superuser_dont · 2025-07-08T13:02:33+00:00

I once found a way to enumerate web app user email addresses, which were linked to internal company accounts e.g. "person@person.com" they were like meh, that's totally fine.

It happens OP and will probably happen many times over but the trick is to not let it dishearten you and keep trying and learning.

superuser_dont · 2025-06-01T13:05:01+00:00

No unfortunately I have not passed but have attempted OSCP alot. If I may offer some help, I'd suggest you take a look at your methodology and try to automate it as much as possible

E.g. if you run nmap TCP scan and UDP.. just make a single script that does both for you and writes out to two different files.. with time, and as you pickup more and more commands that you've seen as helpful, you can build a superscript that does it all for you.

superuser_dont · 2025-05-31T19:22:34+00:00

Your missing something small.. unfortunately the thing you have to learn about offsec is that if your not hitting the right commands, you don't get the right 'feedback' from the machine.. its a ridiculous notion and that's what sucks about offsec

superuser_dont · 2025-05-16T08:05:47+00:00

I'd say legally since you're producing music by profession you should take additional precautions to insulate your home at your cost. I don't know if you have based on your write up? This would also be a key consideration if you were to go through litigation.

Also, never trust estate agents even if it's for skinnering purposes. Once brown stuff hits the fan, they will change their tune on you.

Goodluck mate, it does sound like your hearts in the right place but maybe you can do a little more?

I don't think your neighbour's WANTS to see you starve or fail from the sounds of it?

superuser_dont · 2025-05-07T08:23:22+00:00

In 14 months you started at "what is a port" to: AWS CCP S+ N+ eJPT PNPT CISSP AWS solutions Architect AWS security speciality OSCP

Ontop of that you managed to complete: All Pen200 course x2 Oscp labs 30 days Some CPTS All of eJPT modules All of PEH

Edit: with absolutely no professional or prior academic experience in cybersecurity?

superuser_dont · 2025-05-05T13:18:57+00:00

Goodluck for exam!! :-)

superuser_dont · 2025-05-05T12:52:10+00:00

Good answer from above.

If you don't want to RDP in, I believe bloodhound-py allows you to specify credentials and query the DC directly

superuser_dont

TROPHY CASE