var unreadAlerts = '1';
You have one unread private message from dkota titled Welcome to the Forum!

Question about Hacking
#1
Okay, so I've been googling on my own a lot and found a lot of resources.

The hacking industry can be quite diverse, which is why I am asking for personalized opinions from hackers.

So, generally what are some skills that you would recommend before even attempting to learn the "hacking" methodology?
Report
#2
Pabloeatstaco43 Wrote: Okay, so I've been googling on my own a lot and found a lot of resources.

The hacking industry can be quite diverse, which is why I am asking for personalized opinions from hackers.

So, generally what are some skills that you would recommend before even attempting to learn the "hacking" methodology?

Learn programming.
Master a language, learn another then learn another.
Learn best programming practices, and why are they considered best programming practices.

You must learn how to create the stuff before you try to hack stuff.

Learn popular software configuration
Learn best configuration and common miss-configurations

After that you would understand how to exploit bad coding practices and bad code for exploitation.
And you would understand how to exploit bad configuration for apps and sites etc,...
If you have any questions, please PM dkota
Reply Quote //
#3
thx for answer

btw does anyone here have Facebook crack tools?
Reply Quote // Report
#4
Kali Linux has all the tools already loaded in it you will need for a while. Get it and explore. Go grab some broken version of Linux the the original DVL and play. The older and more broken the better when starting out.
Reply Quote // Report
#5
learn networking.

so many hackers and devs have l33t c0d3 but have no idea what vlans, subnets, packets and firewalls are.
Reply Quote // Report
#6
You need to understand networking ,OS structures and programing languages Take classes on network security as a good start coursea has some good ones not free but indepth. Also coding dojo is a great site to learn a programing language . A good "hacker" has a deep knowledge of the systems they want to infiltrate , Anyone can get some scripts and learn how to use them you don't need to be some suoer programmer but you need to at least have a basic understanding of what is happening,
an0nkush@magicbroccoli.de (OTR ONLY)
Reply Quote // Report
#7
Pabloeatstaco43 Wrote: Okay, so I've been googling on my own a lot and found a lot of resources.

The hacking industry can be quite diverse, which is why I am asking for personalized opinions from hackers.

So, generally what are some skills that you would recommend before even attempting to learn the "hacking" methodology?

start to protect in advance : vpn sock , rdp.... read tutos on and hackforms.net or cracked.io in first.
Brutal Hacker -  >>> Web Hacking and Database Only.
Reply Quote // Report
#8
If your long term goal is to be successful at being a black hat. I am a strong proponent of the "hibernation approach".
My advice would be to not do any illegal hacking initially, until you understand exactly how you can fuck up and get caught up in the legal system, its best you avoid attempting any hacking against targets. It really comes down to if you don't understand a given technology that you are using at its core, then you can't be 100% certain that you aren't using it in a manor that will compromise your anonymity. For example, if you don't know what a mac address is and you hack your neighbors wifi, then you wouldn't know to spoof it before connecting to your neighbors wifi and so on.

My advice would be if you live in a geographic location where there is a white hat hacking industry, where you can learn about hacking without it being a crime. Then dedicate 6 months to learning the foundations of technology. There is a good resource called the "DFIR" 5 pillars. If you google that you can find it. Basically the idea is that you should have a solid foundational understanding of the following topics before moving into basic hacking and more advanced areas such as phishing, active directory hacking, web app hacking, and social engineering.

The 5 pillars you should learn is as follows:

1. Windows (Understand internals, basic configurations, security implications, basic administration, logging).
2. Linux (Understand internals, basic configuration, and so on. Basically if you were to learn from a text book that would prepare you for the Linux+, then you will come out of that learning most of what you would need to know).
3. Networking (Obtain a network+ level of understanding of how networking works, Be able to identify common port numbers, explain how protocols like DHCP, DNS, and HTTP works.
4. Security Theory (Just torrent a security+ textbook and learn it from front to back to learn basic security theory.
5. Scripting basics. (My suggestion would be to learn python as your first language. The first language you choose isn't too important, the programming concepts that you will gain is what is valuable, you can relearn the syntax for a different language within a few days. But the majority of the concepts transfer over from language to language.).

Once you do all of the above you should aim to do tryhackme and hackthebox. Aim to complete the junior pentester, offensive penetration tester, and red team path on try hack me. And aim to get user and root flag on 10 to 15 hackthebox machines.

After that, you can start pirating the more advanced hacking courses from places like hide01 and studying that material.

You will want to create an RSS feed to digest the latest information relating to hacking and offensive security so that you can stay on top of the latest news.


AND while you are doing all of this, you should be preparing your opsec setup to be sufficient if you ever get raided. The things you should plan for is as follows.
Answer the following questions to yourself.
1. How will you mitigate the risk of being raided while you are using the toilet. Is your hacking laptop just going to be unlocked and powered on in the other room? Are you going to power down each time you are going to use the bathroom? Are you going to have a kill switch you are going to be able to activate from your bathroom. If you will rely on a kill switch, how often will you test it to ensure its working? weekly? montly?
2. What about windows, sure you have your door taken care of if that gets raided, but what if they come through the window?
OMEMO Fingerprint:
4DBD9949 1C634952 8C492DB8 5F6B7C31
091F01F2 B6EFDD51 AC670532 70981329
Reply Quote // Report
#9
Woodie Wrote: If your long term goal is to be successful at being a black hat. I am a strong proponent of the "hibernation approach".
My advice would be to not do any illegal hacking initially, until you understand exactly how you can fuck up and get caught up in the legal system, its best you avoid attempting any hacking against targets. It really comes down to if you don't understand a given technology that you are using at its core, then you can't be 100% certain that you aren't using it in a manor that will compromise your anonymity. For example, if you don't know what a mac address is and you hack your neighbors wifi, then you wouldn't know to spoof it before connecting to your neighbors wifi and so on.

My advice would be if you live in a geographic location where there is a white hat hacking industry, where you can learn about hacking without it being a crime. Then dedicate 6 months to learning the foundations of technology. There is a good resource called the "DFIR" 5 pillars. If you google that you can find it. Basically the idea is that you should have a solid foundational understanding of the following topics before moving into basic hacking and more advanced areas such as phishing, active directory hacking, web app hacking, and social engineering.

The 5 pillars you should learn is as follows:

1. Windows (Understand internals, basic configurations, security implications, basic administration, logging).
2. Linux (Understand internals, basic configuration, and so on. Basically if you were to learn from a text book that would prepare you for the Linux+, then you will come out of that learning most of what you would need to know).
3. Networking (Obtain a network+ level of understanding of how networking works, Be able to identify common port numbers, explain how protocols like DHCP, DNS, and HTTP works.
4. Security Theory (Just torrent a security+ textbook and learn it from front to back to learn basic security theory.
5. Scripting basics. (My suggestion would be to learn python as your first language. The first language you choose isn't too important, the programming concepts that you will gain is what is valuable, you can relearn the syntax for a different language within a few days. But the majority of the concepts transfer over from language to language.).

Once you do all of the above you should aim to do tryhackme and hackthebox. Aim to complete the junior pentester, offensive penetration tester, and red team path on try hack me. And aim to get user and root flag on 10 to 15 hackthebox machines.

After that, you can start pirating the more advanced hacking courses from places like hide01 and studying that material.

You will want to create an RSS feed to digest the latest information relating to hacking and offensive security so that you can stay on top of the latest news.


AND while you are doing all of this, you should be preparing your opsec setup to be sufficient if you ever get raided. The things you should plan for is as follows.
Answer the following questions to yourself.
1. How will you mitigate the risk of being raided while you are using the toilet. Is your hacking laptop just going to be unlocked and powered on in the other room? Are you going to power down each time you are going to use the bathroom? Are you going to have a kill switch you are going to be able to activate from your bathroom. If you will rely on a kill switch, how often will you test it to ensure its working? weekly? montly?
2. What about windows, sure you have your door taken care of if that gets raided, but what if they come through the window?
hey i dontknow what is hide01 are you talking about can you please explain me what is that and how to get that....? thanks in advance
Reply Quote // Report
#10
WHITEROSE Wrote:
Woodie Wrote: If your long term goal is to be successful at being a black hat. I am a strong proponent of the "hibernation approach".
My advice would be to not do any illegal hacking initially, until you understand exactly how you can fuck up and get caught up in the legal system, its best you avoid attempting any hacking against targets. It really comes down to if you don't understand a given technology that you are using at its core, then you can't be 100% certain that you aren't using it in a manor that will compromise your anonymity. For example, if you don't know what a mac address is and you hack your neighbors wifi, then you wouldn't know to spoof it before connecting to your neighbors wifi and so on.

My advice would be if you live in a geographic location where there is a white hat hacking industry, where you can learn about hacking without it being a crime. Then dedicate 6 months to learning the foundations of technology. There is a good resource called the "DFIR" 5 pillars. If you google that you can find it. Basically the idea is that you should have a solid foundational understanding of the following topics before moving into basic hacking and more advanced areas such as phishing, active directory hacking, web app hacking, and social engineering.

The 5 pillars you should learn is as follows:

1. Windows (Understand internals, basic configurations, security implications, basic administration, logging).
2. Linux (Understand internals, basic configuration, and so on. Basically if you were to learn from a text book that would prepare you for the Linux+, then you will come out of that learning most of what you would need to know).
3. Networking (Obtain a network+ level of understanding of how networking works, Be able to identify common port numbers, explain how protocols like DHCP, DNS, and HTTP works.
4. Security Theory (Just torrent a security+ textbook and learn it from front to back to learn basic security theory.
5. Scripting basics. (My suggestion would be to learn python as your first language. The first language you choose isn't too important, the programming concepts that you will gain is what is valuable, you can relearn the syntax for a different language within a few days. But the majority of the concepts transfer over from language to language.).

Once you do all of the above you should aim to do tryhackme and hackthebox. Aim to complete the junior pentester, offensive penetration tester, and red team path on try hack me. And aim to get user and root flag on 10 to 15 hackthebox machines.

After that, you can start pirating the more advanced hacking courses from places like hide01 and studying that material.

You will want to create an RSS feed to digest the latest information relating to hacking and offensive security so that you can stay on top of the latest news.


AND while you are doing all of this, you should be preparing your opsec setup to be sufficient if you ever get raided. The things you should plan for is as follows.
Answer the following questions to yourself.
1. How will you mitigate the risk of being raided while you are using the toilet. Is your hacking laptop just going to be unlocked and powered on in the other room? Are you going to power down each time you are going to use the bathroom? Are you going to have a kill switch you are going to be able to activate from your bathroom. If you will rely on a kill switch, how often will you test it to ensure its working? weekly? montly?
2. What about windows, sure you have your door taken care of if that gets raided, but what if they come through the window?
hey i dontknow what is hide01 are you talking about can you please explain me what is that and how to get that....? thanks in advance

hide01 is a site that is maintained and hosted by a dark web member that goes by the handle Hide01. On his site hide01.ir he hosts free downloads for all of the latest offensive hacking courses.

DISCLAIMER: I am not vouching for the safety of the downloads on hide01.ir. I've downloaded a good bit of the courses from there 3 months ago, and didn't have any viruses to my knowledge. But you must still take every precaution downloading things from the deep web, and only open the course material in a virtual machine with Tor for its internet source, for example install Whonix gateway and whonix workstation and download the course material to the whonix workstation and before you open any of the downloads, take a snapshot of the whonix workstation virtual machine (google how to do that). and then every time you are done studying, power down the whonix workstation virtual machine and restore it to the snapshot to ensure no viruses persist if there were any.
OMEMO Fingerprint:
4DBD9949 1C634952 8C492DB8 5F6B7C31
091F01F2 B6EFDD51 AC670532 70981329
Reply Quote // Report


Quick Reply
Message
Type your reply to this message here.



Possibly Related Threads…
Thread Author Replies Views Last Post
  GPT for hacking Jul14nD 3 28 2 hours ago
Last Post: aha
question regarding ghidra and IDA vito 0 12 06-19-2023, 07:50 PM
Last Post: vito
  hacking alexeyi21 4 172 05-28-2023, 04:54 AM
Last Post: alexeyi21
  hacking router password gangistaman20 7 328 05-02-2023, 08:19 PM
Last Post: gsk-jackson
  Hacking mobile phone thread ClamorFatisco 6 237 04-29-2023, 08:45 AM
Last Post: Osamabinali



Users browsing this thread: purely_cabbage
var thread_deleted = "0"; if(thread_deleted == "1") { $("#quick_reply_form, .new_reply_button, .thread_tools, .inline_rating").hide(); $("#moderator_options_selector option.option_mirage").attr("disabled","disabled"); }