Hacking/attack experiences...
I'm, for obvious reasons, only going to talk about the attacks I went through and the *legal* ones I did 😅 😜

Let's first get some things clear/funny facts:
I've been doing offensive security since I was 14-15. Defensive since the age of 16-17. I'm getting close to 23 now, for the record.

First system ever hacked (metasploit exploit): Windows XP.
(To be clear, at home through a pentesting environment, all legal)
Easiest system ever hacked: Windows XP yet again.

Time it took me to crack/hack into today's OS's (remote + local exploits, don't remember which ones I used by the way):
Windows: XP - five seconds (damn, those metasploit exploits are powerful)
Windows Vista: Few minutes.
Windows 7: Few minutes.
Windows 10: Few minutes.
OSX (in general): 1 Hour (finding a good exploit took some time, got to root level easily aftewards. No, I do not remember how/what exactly, it's years and years ago)
Linux (Ubuntu): A month approx. Ended up using a Java applet through Firefox when that was still a thing. Literally had to click it manually xD
Linux: (RHEL based systems): Still not exploited, SELinux is powerful, motherfucker.

Keep in mind that I had a great pentesting setup back then 😊. I don't have nor do that anymore since I love defensive security more nowadays and simply don't have the time anymore.

Dealing with attacks and getting hacked.

Keep in mind that I manage around 20 servers (including vps's and dedi's) so I get the usual amount of ssh brute force attacks (thanks for keeping me safe, CSF!) which is about 40-50K every hour. Those ip's automatically get blocked after three failed attempts within 5 minutes. No root login allowed + rsa key login with freaking strong passwords/passphrases.

linu.xxx/much-security.nl - All kinds of attacks, application attacks, brute force, DDoS sometimes but that is also mostly mitigated at provider level, to name a few. So, except for my own tests and a few ddos's on both those domains, nothing really threatening. (as in, nothing seems to have fucked anything up yet)

How did I discover that two of my servers were hacked through brute forcers while no brute force protection was in place yet? installed a barebones ubuntu server onto both. They only come with system-default applications. Tried installing Nginx next day, port 80 was already in use. I always run 'pidof apache2' to make sure it isn't running and thought I'd run that for fun while I knew I didn't install it and it didn't come with the distro. It was actually running. Checked the auth logs and saw succesful root logins - fuck me - reinstalled the servers and installed Fail2Ban. It bans any ip address which had three failed ssh logins within 5 minutes:
Enabled Fail2Ban -> checked iptables (iptables -L) literally two seconds later: 100+ banned ip addresses - holy fuck, no wonder I got hacked!

One other kind/type of attack I get regularly but if it doesn't get much worse, I'll deal with that :)

Dealing with different kinds of attacks:

Web app attacks: extensively testing everything for security vulns before releasing it into the open.
Network attacks: Nginx rate limiting/CSF rate limiting against SYN DDoS attacks for example.
System attacks: Anti brute force software (Fail2Ban or CSF), anti rootkit software, AppArmor or (which I prefer) SELinux which actually catches quite some web app attacks as well and REGULARLY UPDATING THE SERVERS/SOFTWARE.

So yah, hereby :P

Random fact #0

Back in the days of SEGA Saturn, SEGA was really picky in terms of the game stability. All the games that we're about to be released had to pass a series of tests, like for instance they had to run for almost a week without any crash non stop on a real hardware, or withstand cartridge tilting. If it failed, SEGA wouldn't license it and developer had to fix the bugs and re-send it again.

To fool SEGA testers, game devs we're adding exception screens with the fake "hidden content". Like in Sonic 3D Blast, it presented a screen in the image below and then the level select screen.

So yeah, it's not a bug - it's a feature

Fun/Interesting fact:
"++i" can be slightly faster than "i++"

Because  "i++" can require a local copy of the value of "i" before it gets incremented, while "++i" never does. In some cases, some compilers will optimize it away if possible... but it's not always possible, and not all compilers do this.

Everyone says "Happy Coding!".
No one says "Cry Debugging!"

Fun fact: the cape of the Batman in the arkham game series was the responsibility of one guy, and it took him 2 years to provide the perfect flexibility, fluidity and strectchibility to it for the final installment of the game arkham knight.

FLOYD IS HERE 😎

Gather around kids, it's story time.

So my first breakup left me so damaged and I was in darkest phase of my life. I was alone. Physically, mentally, and emotionally. I went for therapy and spearheaded into success and grew in life soooo fucking much.

31st December 2016, I first joined dR and since the first day this place felt home. Met some of brightest mind and most amazing souls here (sadly many left the place).

I used to shit post and rant a lot. But I loved everyone here. But then I don't quite remember, but I decided to quit this place as community started to grow. Many others left as well.

I came back here in 2019 IIRC and started all over again. Got along well with new members and started having fun.

I used to crib and cry about being underpaid. Lost a kickass Europe job due to pandemic.

I will skip what all happened between me and @Scout but she is a sweetheart, though very rough and brutal with me at times (actually very often), but she is so selfish for me and cares for me that I couldn't resist but listen to her always. A lifelong friend for sure :)

I used to rant about my dumb office colleagues. Definitely not the sharpest minds but good people at heart (which I did not realise).

So in October 2020, I earned a new job and my company retained me with a 100% raise and a promotion making me lead of product innovation and UX.

November end I met a girl in professional context on LinkedIn who was conducting a workshop. Being hungry for learning, meeting new people and kill my lockdown boredom, I singed up.

Now I went for December break and my colleagues sent me a gift hamper when they came to know I got a promotion. I felt bad that I ranted about them so I deleted my account and also wanted a social detox.

Post the workshop, I started conversing casually with the girl I met. She was married. But things hit off. Eventually in February end I confessed that I had feelings for her and in next few days she reciprocated. I told her I was aware of her marital status and it's okay if nothing happens between us. Then she started to open up of how she was with one guy for 17 years and was abused in everyway and wanted to separate but never had the courage and all.

She decided to file for paperwork and then be with me. Things got messy when her family got involved thinking I was causing all of it.

She went back to her partner and I realised I had some emotional and mental issues of a person's past that bothered me. But we were overcoming it. Soon the honeymoon period started phasing out.

Her family started giving me death threats. We went underground even further. More arguments and fights between us.

@Scout kept telling me I was stupid and I disregarded her. I feel like an idiot for not listening to her.

That girl kept gaslighting me, hurting me intentionally, scratching the surface made me realise how broken and damaged she was. She lied to me and created fake persona of herself to make me fall for her. Everything was lie. Literally.

I felt horrible for trusting her. My trauma relapsed and I started having crazy panic attacks leading to self harm and being suicidal. That girl was drugged all the time with psychological medicines and very poor character & personality in general (I don't want to judge anyone but just stating the facts).

Eventually she just disappeared and I was like fuck this. Earlier, after every fight, she used to show fake affection and I used to melt but not this time.

I was like fuck this shit. I have some super amazing friends like @kiki who helped me overcome this. I started going for therapy and realised what all areas I need to improve. My therapist is soooo brilliant, she understands the root cause instantly and also knows how to fix it. And the same day I and both my parents were COVID-19 positive. Last few weeks were dark and haunting.

Further more, the girl comes back after a week and then acts as a 'nice girl'.
Initially fake affection, then drama, followed by making me guilt trip, then threats, and now blaming me.

I kept ignoring her calls (50 to 70 calls in a day), emails, left her unread on Telegram, and everything I could do to ignore her without blocking her. I started gaining my happiness back.

During this mess, I lost 5+ KG of weight. She has no friends in her mid 30s. Knows no life or survival skills. Her family hates her, no career, no emotional or mental maturity, literally nothing. Insanely dumb and toxic manipulative person who is not even worth being called an ex. As per her everyone around her is an asshole except her. Every time something happened, she used to blame and bad mouth the other person. Now she is doing with me. In all her life situations, either she was a hero or a victim. One upped me all the time. Now that I see it, I hate myself for allowing it all of it and now having enough self worth to walk out of it earlier.

Continued in comments...

Need Help!

Anyone can please come out with algorithm to win an arguments with girlfriend..

devRant is just a subreddit with a website.

In early stages, c# was called "COOL", or c-like object oriented language.

TL;DR: a dude thinks good graphics make a game good.

so every day when the school ends, me, a dude and another girl walk home. as expected we have lots of time to talk about anything. I wanted that day to tell that dude about what I am going to buy on steam summer sales with just 15$.

me: I am going for this summer to play lots of games so I saved some money for this summer sale. do you want to hear what awesome games I am about to buy with just 15$?
dude: yeah, sure thing.

he wasn't expecting much

M: this summer I am going to buy 5 games and maybe keep more for some others. they are so awesome!
D: ok, let's hear those 'awesome' games!
M: the first game is devil daggers, maybe you don't kno...
D: of course I do. is that game
M: I want to get that game just to improve my aim, but maybe I will have some fun.
D: yeah yeah, I know that game
M: *poker face*

I KNEW he doesn't know this game and anything about pc games because of the followings...

M: ok then... I also want to get Half-Life 2 : Episode 1 & 2. they have pretty rich story and I already have both Half-Lives.
D: holy shit but the graphics... ok, one more 'awesome' game of yours.
M: there are 2 episodes, 2 separate games. I really don't care about the graphics, I love the story.
D: continue with your 'awesom' games...

that dude didn't even knew about half-life and said that game is bad.

M: another game I want to get is Battlefront 2, the one from 2005 and...
D: 2005!?
M: yeah, the new one sucks, and the gameplay in the original is way better and...
D: *starts laughing* 2005!? I thought you were getting the new one. I imagine the graphics being like this car. *points to a fucking car, yeah that kind of comparasion, I know*

after this I was so fucking pissed off. he doesn't even know about some cult classics that are meant to be played. he doesn't even have a pc nor console and he is stating his opinion on fine air for fucks sake!

M: ok, what about getting the facts and then make an opinon.
D: yeah yeah *making fun of me at that point*

I didn't tell him that I wanted to buy the binding of isaac, cause it was enough for me. I told him to watch some reviews on these games and blog posts about them and I am sure tomorrow he will say that he 'wathced' the reviews and that those games are garbage. it's his style to underestimate things. I fucking hate him, not becuase of the games, but because he underestimates everything that is not on his list of 'good games'. that list consists of new games with great graphics(3D only).

sorry if I exaggerate saying that those games are cult classics but I really look forward into buying them.

if you have another indie game to run on this potato machine(2gb ram, pentium dual-core 2.1ghz, gtx 525m) that I should or at least try comment, I am open to suggestions!

Some fun facts :

☻ Programmers spend approximately 30% of the time surfing the source code 😁

☻ Progress in programming can be classified into 4 stages:
(a). Complex Programming
(b). Making Progress
(c). Slow Progress
(d). Stuck

☻ Programmers have a tendency to report their problems incompletely

☻ The main error messages, execution times and runtime compilation errors and the average time to solve them

☻ The software maintenance consumes more than 50% of the effort

☻ Ctrl C, Ctrl V, and Ctrl-Z have saved more lives than Batman tbh😇

A lot of online games (mainstream) tend to make me kind of angry or stressed. Lots of either blatantly stupid or negative players kill the fun.

A few days ago I've startet to see videos about "Among Us". It's on a big hype right now and their machmaking servers must be glowing.
Well, this game is fucking awesome and it makes me really happy! 😊
Nothing beats a 30 minute game of lying, betrayal, teamwork and good old 30'000 IQ big-brain detective work.
I think it's a great execise for remembering stuff.
You remember colors, who's said what and who faked or did which task. And the hardest part is, even if you fucking saw the killer, you have to present the facts in a way that people believe you.
Each round is unique and full of riddles.

Yeah, I just wanted to say: Fucking great game 😄

It’s throw back Thursday folks...

Today’s post sets us back to a time long before the internet. Before C ... from the days of FORTRAN.. COBOL .. and LISP... How was info not taught in classes and published in large books shared???? Well it’s was journals like these, sent out monthly and quarterly for some. They would publish their findings to these type “magazines” but extremely technical.

This is one of the oldest editions have. Trying to collect them.

I believe in Knuths TAOCP, he references the first article of this edition... I’ve seen that article referenced in one of my books but i forgot which book.. pretty sure TAOCP.. anyway..

Just a fun throw back. Btw... just because it’s from 59’ doesn’t mean the information is irrelevant.. the information is facts the equations are true.

having some rich and poor friends , i have found some weird behavioural patterns:

1. the poorer they are the lesser they value time over everything else. rich guys not only value their own time, they value other person's time too
2. the poorer a person is, them more they find happiness in people than objects. the richer a person is , the more they spend 'buying' happiness in the form of shiny objects/materialistic stuff than celebrating with people

3. poor people are inclined towards respects and beliefs , while rich people are inclined towards facts and logics. a rich guy is always trying take decisions and make opinions around facts+logics(and even sometimes trying to create false facts around their perspectives), while the poor folks end up doing something out of respect because their ancestors or relatives etc "told" them to do so

======

I am not sure if i can infer anything from above facts. these are not the points that "make" someone rich or poor (or maybe they do, idk)

Both have their goods and bads, but both types of folks are not ideal : Poor people have decency, humanity and respect for traditions/people, but lack areas of growth. while rich people are so much focused on growth and gains, they forget to be a human first

As a friend, i enjoy both styles : get ample amounts of outing, fun, budget parties with my poorer folks, while going into fancy expensive restaurants and trying new cuisines with my richer folks :P

I had to build a few packages today from a git source.

Everything just plain text or shell scripts - so no fancy shit, no buildsystem... Nothing.

I was painfully reminded why I had forgotten a lot about dpkg package builds.

Fun facts:
- seems like impossibro to define an output directory for debuild (../ from source which must be pwd/cwd)
- i used /opt/<vendor_name>... Purging the deb from system deletes opt too, as it is empty
- reprepro (or whateva it is called) fails with an "uncommon GPG error" instead of saying "I don't know which key to use"
- creating rolling release numbers (as the packages won't have a real versioning system...) is fun - when you remember that date isn't sufficient, as the time part is necessary to build multiple packages (versions) per day

Compared to an Gentoo ebuild, this was really rocket science....

Guess as soon as someone does not follow the debian way, he must be shunned and exiled. At least it felt like this ....

But it works now. Woohoo. *cries internally*

Happy National Backwards day January 31 (in the US) So for today all of us left handed dyslexics are correct 😁

Fun fact
leonardo da vinci used to write from right to left and wrote his letters backwards. The earliest cipher I can think of.