/sec/

File: cypherpw.png (19KB, 534x441px) Image search: [Google]

19KB, 534x441px

can anyone help or point me in the right direction?

>>59983103
man xxd and look into hex

>>59983177
kek, I bet he wants to kill himself with that answer

>>59983103
>>59983177
This is all very interesting. What can you do with the data after it has been reverse-dumped??

>>59982838
I want to give lain many pats on her head.

>>59982838
/g/entoo men looks like is recovering and might end up winning huh.

>>59983433
look for word like in the matrix

>>59983444
trips have spoken more people should vote lainshill

>>59983875
But lainshill sounds like shit.

Is the CTF team planning to participate on DEFCON CTF qualifier too?

>>59983103
I responded in your other thread

LONG LIVE /g/ENTOO MEN

>>59983103
anything between 00 and 7f is ascii printable text.
Just a hint ..

What can you do once you get a shadow file?

>>59987766
john the ripper and sometime

>>59984674
sure we can definiatly do that

The Team Name is /g/entoomen

Make sure you have an account on CTFtime.org

here is the team code

/g/entoomen:1d1IbO:j4yx0csuEThOzKLsWWVxuBHhFMA

>>59989741
alright right so new code

/g/entoo men:1d1Ief:jpI2JPUwuoJRmjJMlpKllpuGyn4

>>59987766
Brute force the password hashes. The first dollar sign marks the type of the has, the second the salt, and the third the hash.

>most dutch registrars set up dnssec by default
>none of the foreign registrars (read American) seem to do it
>wonder if I should let it affect my decision whether or not I should use an American registrar
Does dnssec really matter for personal email? It seems a bit unlikely to be targeted for a dns poisoning attack. Or am I wrong?

>>59991995
you could always do on a later date and focus on low hanging fruit first

>>59991995
Dutch registrars get a discount on .nl domains from the registry if they set up dnssec. Thats why they do it.

>>59982838
>>59989741
>>59989767

>>59983103
>>59987586

Does that mean you could just do a hex to ascii conversion?

>>59993171
yes

>>59993623
I tried that but just got random characters.

I'm missing something, surely.

Also where's a good place to learn about this stuff. Could you maybe give me some key words to start researching with?

>>59993675
maybe it is substation cypher

>>59993742
Is all this hexadecimal stuff related to machine language?

>>59993893
pretty much

>>59994163
Good enough for me

bump

JOIN THE CTF TEAM
>>59992807

>>59995992
I'm pretty shit and would just be in it to learn so I can suck less. Can I still join?

>>59996037
sure like the op says it is open to all

Joining on ctftime won't actually do anything.

>>59996590
same with shit posting

>>59996359
What's the IRC server?

>>59996923
Rizon

>>59996590
It'll help with /g/s e-penis issue.

>>59993893

I have not translated those chars and maybe Im firing bullets to air, BUT i would check for endiandness and look if makes more sense.

>>59998101
I'll look into it, thanks

/sec/ convince me to watch Lain.

>>60000156
How are you liking it?

>>60000971
Liking what?

>>60001042
Lain

>>60001085
I wouldn't know, I haven't started. She seems to be cute though >>>/c/2883789

what's the IRC server on? freenode?

I'm too new to know otherwise, but I promise not to shit it up with questions, I just wanna lurk and learn.

>>60002741
Rizon. Not a single issue with making questions, most of us are here to learn after all, be it at a lower or higher level.

BUMP CTF SOON

Actually, here's a question, how does one use a socks5 proxy legit?
As in, everything is piped through it, even shit like Flash.
I never did get that working right and still can't.
Admittedly with minimal trying.

Why? Why for shitposting of course!
Every try I did, Flash always got the actual IP and not the proxy.

>>60000156
no

You guys know about the Charlie hashes for pctf right? I hope you're in irc

>>60000156
It give off a great nostalgic feeling for the Internet of the 90s and has a nice soundtrack.

>>60007550
>internet of the 90's
sigh ^_^

Getting old fuckin' sucks.

Can someone give me the use case for passphrase-protected encrypted SSH keys, as opposed to unencrypted keys?

Everyone says you better use encrypted keys if you know whats good for you, but as far as I can see they protect against a very narrow threat. First, they protect against physical access. Someone steals your laptop or clones your drive while you're not around. Full-disk encryption is available, easy, and protects much more than just your SSH keys. Second, they protect against someone stealing your keys some other way and then using them, like via malware or some kind of remote exploit. But if someone exploits my machine to the extent that they can exfiltrate my encrypted SSH keys, they could also just keylog me when I type in the passphrase to use my SSH keys, snatch the keys out of memory when I have them unlocked, or whatever.

So encrypted SSH keys defend me against someone who exploits my machine, but whose ability to use that exploit is intermittent or incomplete, so that they can't crab the keys when I decrypt them for use. How is this very helpful? What am I missing here?

Guys, don't forget the /g/ wiki has a netsec general article on the wiki. It can use some improvements.
https://wiki.installgentoo.com/index.php/Netsec_general

File: benis.png (15KB, 404x167px) Image search: [Google]

15KB, 404x167px

>>59985525
not that OP, but where to go from this?

>>60010496
This, improve the wiki article.

>>60011084
we have a pastebin either of you guys could improve it yourself

>>60011387
Could OP next thread link to the wiki article?

>>60011399
it does not add anything that is not in the pastebin