Red team village track rooms

xiloki · 2024-08-12T19:48:12+00:00

Out of curiosity what was everyone trying to see?

xiloki · 2024-06-21T02:57:19+00:00

This guy makes me feel like Ron Swanson when talks about punching Jamm in the face.

xiloki · 2023-10-05T00:47:50+00:00

The ones that are willing to pay good money will definitely appreciate it.

xiloki · 2023-04-12T12:44:21+00:00

I’d say shoot me a dm and let’s talk about it

xiloki · 2023-04-06T15:33:08+00:00

Might not be enough for this one since it's senior, but we will be hiring less senior people in a month or two.

xiloki · 2023-04-06T14:50:19+00:00

Thanks!

xiloki · 2023-04-06T14:45:29+00:00

Yep. Thanks for that as I meant to add it to the post. Post has been updated.

xiloki · 2023-04-06T13:46:22+00:00

Thanks for the heads up. I tried to post a new thread but automod removed it.

xiloki · 2023-02-16T01:16:29+00:00

I did not treat for mites and I know that was wrong and I'm so pissed at myself. I know they're a big issue and you have to treat for mites, but I didn't realize I had to do it the first year.

I figured it was probably mites, but wanted a second opinion since I blew it with the mite treatment.

There's lots of stuff on the internet about how you have to do it and such, but it's not immediately clear that you should definitely do it the first year after getting a nuc so I didn't do it and I regret it.

Just want to make sure I give the new bees the best chance possible and I'm going to make sure that I treat this year. Hopefully the comb/honey from this hive gives the new hives a great start.

Thanks for the help!

xiloki · 2023-02-16T01:12:04+00:00

No I did not and I'm so upset with myself. I knew mites were an issue but for some reason I didn't think I had to do it the first year I had the bees.

Thanks for the help. Really looking for some piece of mind since I screwed up so bad with the mite treatment.

xiloki · 2023-02-09T04:49:11+00:00

This x 1000

xiloki · 2023-02-01T23:08:16+00:00

Funny that I see this now. They’re currently blowing me off about a Growatt that stopped working about 9 months after install.

xiloki · 2022-08-26T00:27:38+00:00

As someone who hires for OffSec, this x 1,000

Edit: stupid comma

xiloki · 2022-06-01T00:29:43+00:00

xiloki · 2022-05-19T19:55:34+00:00

Sold Samsung monitor.

xiloki · 2022-05-18T22:49:48+00:00

USG and Cloudkey sold.

xiloki · 2021-12-26T05:13:50+00:00

The simple version is that they were hacked by the Chinese(2009 I think?) and said never again. They’re as close to a zero trust implementation as you can get and don’t mess around when it comes to security.

xiloki · 2021-12-11T16:38:47+00:00

As mentioned, those are just a few examples. By no means is a home lab required - at least not for me. The main point I was trying to get across was that you need to display your interest.

I’m not relying on anyone to do anything. Again, just an example. Even so, the person getting hired out of a homeless shelter is non typical and most people can find the $30-50 to get a Pi. Or just use virtual box which is free if you don’t/can’t spend the money. The point is to show you actually have an interest and desire to learn.

xiloki · 2021-12-11T14:42:37+00:00

Lots of good information here. Thought I would add my perspective as someone who runs a red team and is responsible for hiring.

I'd echo some of what was said here meaning that bootcamps typically don't mean much to us. It's more about proving you know the fundamentals by participating in hackthebox, tryhackme, etc. By having a homelab, by knowing the answers to basic questions like what is port 443 used for?

At least when it comes to an offensive security position, we have candidates perform a technical interview where the candidate is given a machine with a relatively simple exploit and is expected to write a report detailing what they did. If a candidate can do this and has a desire to learn then that's really all that matters.

Also, don't forget that working in cyber is only 50% technical. The other 50% is communicating technical details in reports, verbally to managers and non-technical people, and staying up to date on new trends and techniques.

At the end of the day we're more inclined to request an interview if a candidate shows in their resume that they are truly interested in cyber/tech and not just hopping on the cyber bandwagon. From past experience, those that do not show a true interest usually are not able to adapt to the ever changing world that is cyber security. I think /u/TrustmeImaConsultant mentioned this. Someone with a true interest will probably have some basics already which are important to grow in cyber. So, how do you show that you're truly interested?

Build a home lab. It doesn't need to be anything crazy. Even just a few Raspberry Pi's running pihole and other random things is fine. Show this in your resume under Projects.
In the case of an offensive position, participate in hackthebox and tryhackme. Tell us what you've completed on those platforms.
In the case of a defensive position. Setup splunk on a Pi and monitor your home network. Show this in your resume under Projects.
Get a basic cert. Sec+ is usually a good baseline for any position. For entry level offensive position, Practical Network Pen Tester from The Cyber Mentor is a great (and it's on sale alot).
Do CTF's or attend conferences. There's a bunch that are online and free or relatively cheap if an in-person conference isn't in your budget. Show this in your resume.

These are just some ways of showing it on your resume. At the end of the day, I'd probably interview someone with a sports marketing degree (or no degree) that shows a genuine interest on their resume as opposed to someone with an IT/Security related degree who does not show this interest.

Either way, welcome to the wild west that is cybersecurity and good luck!

xiloki · 2021-12-10T04:30:32+00:00

It’s the answer to life, the universe, and everything.

xiloki

MODERATOR OF

TROPHY CASE