. Yo Yos

Hi

Hey

@exitvillian I dont think the internal network can talk to you, i.e., initiate any communication to you. It just relays the traffic that you initiate, back and forth My question is why not Node.js? You also have a library called Helmet.js that you could have used for protection against any web based attacks. It would have been Javascript everywhere, right. So, why not Node.js?

Fun fact this is a django web app, meaning mostly written in python. But javascript is used to handle the likes, following and edit post features. The databse is postgresql which is inside it's own docker container. All of it is divided between 3 docker containers running on some amazon ubuntu ec2 instance in OHIO.

Here is a question i would like to pose. When you set up sshuttle or proxychains so that you can talk to the internal network, you are def able to talk to the network but is the network able to talk to you? Like yes you can initiate a connection and get a response back. But im asking if the reverse is possible.

@exitvillian I hate companies like these. They got no respect for the candidates that they are interviewing. Fuck them bro, something better is in your way

Ahh i was thinking of doing that exact one. also looking at the cloud red teaming cert they got. i already paied for the CRTO though. I heard the CRTP might be better.

Hey I need a job , can I work at your company? I just interviewed for a position at SYNACK. Got passed the fourth and final round and then they ghosted me : ( never heard anything about if i got the job

I am doing the CRTP for work, i cant recommend it enough if you want to dive deeper into Active Directory. Its with fully up to date and patched machines, Microsoft Defender active etc. its a good entry to real red teaming! After that im 80% done with the CPTS course, so CPTS CBBH and then finally OSCP next. Will tackle the portswigger stuff later though, they really are good labs.

true, now i have to make a video and link your channel + this forum (o_o) :D