Please don’t I barely understand subnetting as it is.

I know, a problem that faces every single American, right?

Family Values… yeah, Trump values his families genitals. Look at his “relationship” with his daughter throughout the years.

Work has been difficult, mostly due to coworkers lately.

If I’m blaring Rage, like I have all week, I’m ready to walk or to burn the place down. But I’m a lazy man.

Or I mean, Shodan exists. I’m sure the gov has better.

A theoretical botnet I was looking at on github used shodan to identify possible targets to infect.

I was the SME over POS terminals in a past job.

Owners are often the biggest morons at the location.

Before that, I used the same basic software package at Subway because the owner couldn’t be bothered, and the manager, great lady, was not technically apt.

I need a slightly less secure walkthrough to allow, essentially, android auto and google maps to operate.

I did without for a while, and it wasn’t pretty.

Lets just say I went from a sketchy hospital district to a very sketchy dead end in a neighborhood that had lookouts. Working nights, this was not a great time to drop in unannounced.

Kali is still around, I last did an install ~6 months ago, I think?

That got put on the back burner though, not because of the flipper, just life.

I have one.

Its fun.

But on the subject of rolling codes, I was able to get through a security gate that relies on, essentially, a garage door opener.

The exploit relied on the ridiculously low amount of rolling codes it cycled through.

Capture one, and try it a few times to get through.

Cars are more robust. Despite tinkering with it for about 8 hours, I wasn’t successful with defeating it. That being said, I picked up the device, in part, to start messing around with various signals as an educational tool.

Time enjoyed is not wasted.

Of course, Tik Tok isn’t my jam, so it would be a waste of time for me.

I’ve often wondered how the world would cope without 24 hour IT support.

All I know is I would love to see the chaos unfold, sadly, I think more than a few lives would end as a result so I can’t condone that for all fields.

Me too.

In high school, there was a kid who was always trying to make money. Like even then, he wanted his own business. In fact he had a couple small ones back then.

One of his endeavours was massive LAN parties. He had the capital to rent spaces, hardware, and was even able to get sponsorships.

He did not have the tech chops to do it though.

Myself, and one circle of friends were THE computer nerds of the school, but it wasn’t really seen as a negative for us - then again we did orchestrate a “free day” and got away with it by taking down the schools network from inside and one person had a loud fucking mouth, but we covered our tracks.

Anyways, we got in free to these LAN parties as long as we set up and maintained shit. Surprisingly very few problems, about once a LAN party we had to fix something. And it was useful experience.

That shit was fucking amazing. I loved it.

I got home from work. Wife works from home. She has had an ongoing tech issue I can’t really touch because it’s that companies property. But I just don’t want to hear it. At all. I’m dead inside in that regard.

It’s gotten so bad that I had an issue with my gaming rig.

I needed to reseat the RAM. Not hard, except the case is mounted on the wall as a display piece that would require moving a bunch of shit before getting a ladder and yada yada.

I just didn’t game for three days. Just could not muster the energy to care about that. I hate it.

Bounties are a bit nebulous.

Actual pen testing companies have red teams (attackers) that have a scope of what they are allowed to target, and how they go about it.

For example, just because a red teamer can get into the data center to do stuff locally doesn’t meet the scope requirement of testing their web page externally. They would be prosecuted most likely.

Pen testing companies also have lawyers, at least they should, who help negotiate scope and what is legally allowed and in what context.

Due to the secrecy needed for some tests, the security staff may not be aware a test is in place. From what I understand, generally people have some sort of paperwork on their person, or at least the contact information of someone at the company with the authority to authorize this red team pen test.

That being said, cops may still get called, you may still get arrested, and have to deal with the courts.

Or worse, some trigger happy security guard shoots you.

I’m just studying that stuff though at the moment, so take what I said with a grain of salt.

Oh, well that’s totally affordable and won’t affect the consumer market at all.

Get to vantage point.

Explore actionable map points.

Go to next area.

Repeat.

Which game am I talking about? Doesn’t matter, it’s the Ubisoft formula these days and has been for a long time.

Wake me up when Ubisoft metaphorically burns to the ground, or they do something innovative.

Makes one want to sail the high seas out of principle.

I have a relative who did it.

But they are super into genealogy.

At this point, to go deeper, they would need to learn a new language and travel half way across the world.

I was not consulted before this was done. I would have cautioned against it.

This makes me miss a bar I used to go to, and was the favored watering hole for most of the staff at a previous job.

It had had several owners, and it’s name changed on official paperwork every time. Locals still called it Big Tree.

Why?

It was built around a big tree that went out of the roof lol.

It was bought and demolished, the tree removed.

Nothing has been done with the lot since, and it’s been a couple years.

Damn shame.

Social engineering, arguably, is one of the harder things to learn.

It’s a collection of soft skills, and if you’ve been paying attention to rank and file tech jobs, places are looking for people with soft skills because they’re so impractical to train.

This goes down to your basic help desk tech.

Anyone with an interest in computers can sit down and learn how to analyze and exploit weakness in code. In fact, it’s a fun puzzle. Dealing with other people, let alone establishing oneself as another person and fucking SELLING that character enough to get what you need?

People write off social engineering far too quickly. It’s quick, it’s effective, and if done well, the person you exploited doesn’t even realize they’ve been tricked.