/hmg/ Hackerman General

If you have to ask in the thread if it belongs here, it doesn't belong here.

In /hmg/ we discuss pentesting, ctfs, exploits, and general being a hackerman.

Resources:

VM/CTFs:
overthewire.org/wargames/bandit/
>easy beginner bullshit

vulnhub.com/
>prebroken images to work on.

hackthebox.eu/
>super secret club

Tools:
kali.org/
>meme dragon distro but it just werks

metasploit.com/
>scriptkiddie starting point and swiss army knife

Tutorials/Guides:
abatchy.com/2017/03/how-to-prepare-for-pwkoscp-noob
>From zero to OSCP-hero rough outline

youtube.com/channel/UCa6eh7gCkpPo5XXUDfygQQA
>IppSec, video guides for retired HTB VMs.

Certs:
eccouncil.org/programs/certified-ethical-hacker-ceh/
>CEH, only looks good a resume to non-technical in HR

offensive-security.com/information-security-certifications/oscp-offensive-security-certified-professional/
>OSCP, the big dick swinging exam, 24 hours to own 5 machines and a further 24 hours to write up a report detailing your methods.

What's the best book on memory exploits? Read a chapter on it in a penetration testing book by starch press, but it wasn't indepth enough at all, and I love to go much further

>Just doing some kernel exploitation
Damn dude that looks interesting as fuck.

What resources got you started in how to look for them?

finally got into HTB
im currently fucking around Nibbles

Think I saw in the last thread that /hmg/ has a team on HTB?

One dude was scooping up names to add to the team, lets see if we can summon him back here

Just finished Bandit on OTW Wargames

am I a hacker yet

So did anything come from that spectre JavaScript exploit?

Probably.

I'm at level 20 and my paced has slowed down a fair bit

Feeling not too 1337 considering this is
>easy beginner bullshit

What issues are you running into?

Yeah, at 21 the cron shit fucked my mind.

Looking ahead, the Vortex wargame which is 3/4 of the way down already requires you to know C. Fuck my life.

Can anyone drop hints on HTB? Is it something to do with the open TCP ports or am I fully retarded?

I'm back post names and I'll add.

working on Chatterbox right now through the resets, if anyone has a tip on what to do with the very odd open ports mind dropping a hint?

On a VM in htb or the sign-up?

Signup. I've been raping the ports for a while because I have no experience with frontend web stuff.

yeah it's not port related at all.

>look at the page source
>learn to POST
>work the output
>get the code

Thanks lad

>window.location = "noooooooope.html"
Well, fuck you too!
Also mildly annoyed at Mozilla that it takes more time to disable JS in Firefox than to just curl it...

Fucking lol

i'm and absolute retard, but i wanna start twitch streaming myself working on ctfs, i can write semi-functional python scripts and i have a pretty basic understanding of networking, am i gud enuff to attempt this?

Why don't you try and find out?

My brother !
Just finished it myself, first time I was doing a CTF and something that deep with Linux. That was quite interesting.
Thanks a lot to the creator of /hmg/, you finally made me take the time to taste that.

Basically this

It's a bloody good exercise. I learnt enough to do the LFS just from bandit

Thing is I have a job in the RE field, so I learn from there, and I did game cracking before, keygens, and was part of some other forums where we RE games together. Last I looked they were doing Steam PUBG with aimbots and stuff, but I don't join them much anymore.

I don't often visit here, I just come for a short period of time, have a laugh at the inane comments, see some cute anime/grils, and go.

bumb for hax