#100daysofcybersecurity — Public Fediverse posts
Live and recent posts from across the Fediverse tagged #100daysofcybersecurity, aggregated by home.social.
-
Hello, again, again, and again! :ablobcatpoprev:
Today, I completed learning how to detect server-side attacks from /var/log. I also found a way to use different parts of the logs, such as the user agent, to identify automated tools being used.
I also used Wireshark to analyze a brute-force attack and successfully recovered the password.
Then I started studying deep learning for my final-year exams, and I think I’m going to pause my 100 Days of Cybersecurity until my exams are over. 💪😭
-
Hello, again, again, and again! :ablobcatpoprev:
Today, I completed learning how to detect server-side attacks from /var/log. I also found a way to use different parts of the logs, such as the user agent, to identify automated tools being used.
I also used Wireshark to analyze a brute-force attack and successfully recovered the password.
Then I started studying deep learning for my final-year exams, and I think I’m going to pause my 100 Days of Cybersecurity until my exams are over. 💪😭
-
Hello, again, again, and again! :ablobcatpoprev:
Today, I solved FTP-related problems using Snort, and I found various ways to detect whether there is a brute-force attempt or if the attacker has succeeded.
-
Hello, again, again, and again! :ablobcatpoprev:
Today, I solved FTP-related problems using Snort, and I found various ways to detect whether there is a brute-force attempt or if the attacker has succeeded.
-
Hello, again, again and again! :ablobcatpoprev:
I started by working through the web security room, focusing on client-side vulnerabilities and how attackers can exploit them.
Then I moved on to a Snort challenge room, where I’ve started writing rules to detect anomalies.
Now I’m finally beginning the project—I’ve got my setup ready and everything in place to start building.
-
Hello, again, again and again! :ablobcatpoprev:
I started by working through the web security room, focusing on client-side vulnerabilities and how attackers can exploit them.
Then I moved on to a Snort challenge room, where I’ve started writing rules to detect anomalies.
Now I’m finally beginning the project—I’ve got my setup ready and everything in place to start building.
-
Hello, again and again! :ablobcatpoprev:
Today, I practiced using Snort for real-time traffic analysis on the eth0 interface. I explored different flags to read and interpret log files more effectively. In addition, I used tcpdump to analyze network traffic and worked through a few related questions to reinforce my understanding.
After that, I spent some time on my college written assignments. Finally, I’m very close to finishing the last problem set—it feels like the end of a long journey, and there’s a strong sense of progress and reflection that comes with it.
-
Hello, again and again! :ablobcatpoprev:
Today, I practiced using Snort for real-time traffic analysis on the eth0 interface. I explored different flags to read and interpret log files more effectively. In addition, I used tcpdump to analyze network traffic and worked through a few related questions to reinforce my understanding.
After that, I spent some time on my college written assignments. Finally, I’m very close to finishing the last problem set—it feels like the end of a long journey, and there’s a strong sense of progress and reflection that comes with it.
-
Hello again! :ablobcatpoprev:
Today, I continued working on data exfiltration techniques and completed the remaining challenges, including ICMP and HTTP exfiltration. It was interesting to see how different protocols can be abused to stealthily move data out of a network.
After that, I switched gears and watched about halfway through the Flask lecture from CS50x, getting a better understanding of how web apps are structured and handled on the backend.
-
Hello again! :ablobcatpoprev:
Today, I continued working on data exfiltration techniques and completed the remaining challenges, including ICMP and HTTP exfiltration. It was interesting to see how different protocols can be abused to stealthily move data out of a network.
After that, I switched gears and watched about halfway through the Flask lecture from CS50x, getting a better understanding of how web apps are structured and handled on the backend.
-
Hello again! :ablobcatpoprev:
Today, I practiced analyzing logs with Spunk, as well as manually analyzing them in the command line. Lastly, I learned how to correlate different types of logs to a trail of compromise.
Next, I joined the Sapphire League on TryHackMe. It's really good! Tomorrow, I will focus more on SEC1; I'm almost ready to take it.
Finally, I finished the artificial intelligence lecture from CS50, and now I'm studying the HTML, CSS, and JavaScript section. Hopefully, I'll finish this week's problem set tomorrow.
-
Hello again! :ablobcatpoprev:
Yesterday, I was having headache and light fever, but I pulled it through, and finished one of room in the network monitoring module.
I solved the Fiftyville Mystery problem set, and today I'll take a look into AI, and HTML, CSS, Javascript lectures.
I wasn't able to post yesterday because of the fever and low energy, I am still feeling feverish but I'll try my best. 🤪
-
Hello again! :ablobcatpoprev:
Today, I finished and reviewed the Carnage, and went through other concepts about display filtering.
Next, I have completed the songs problem set from CS50, and went through SQL queries.
Lastly, I have took back-up and then updated the BIOS. Not much to share today, but I'll work harder tomorrow.
-
Hello again! :ablobcatpoprev:
Today, I finished and reviewed the Carnage, and went through other concepts about display filtering.
Next, I have completed the songs problem set from CS50, and went through SQL queries.
Lastly, I have took back-up and then updated the BIOS. Not much to share today, but I'll work harder tomorrow.
-
Hello again! :ablobcatpoprev:
Today, I finished and reviewed the Carnage, and went through other concepts about display filtering.
Next, I have completed the songs problem set from CS50, and went through SQL queries.
Lastly, I have took back-up and then updated the BIOS. Not much to share today, but I'll work harder tomorrow.
-
Hello again! :ablobcatpoprev:
Today, I finished and reviewed the Carnage, and went through other concepts about display filtering.
Next, I have completed the songs problem set from CS50, and went through SQL queries.
Lastly, I have took back-up and then updated the BIOS. Not much to share today, but I'll work harder tomorrow.
-
Hello again! :ablobcatpoprev:
Today, I started the Carnage Room Challenge. In this challenge, the infection begins when a victim downloads a zip file containing a document with a macro. Once the machine is infected, it communicates with the domain with an encrypted. I am still halfway through.
Next, I reviewed the cryptography theory, and now I am looking at the practical part, which involves John the Ripper. I learned a lot about symmetric and asymmetric encryption and HMACs.
Then, I configured Obsidian to use Ollama. Since local models aren't powerful, I found a solid use case for them. I'm using them with Obsidian for proofreading technical articles. This boosts my productivity while keeping my data private. I'm using Harper for spell checking and Local GPT for model usage.
I finished the remaining lectures and started working on the SQL Week song problem set.
-
Hello again! :ablobcatpoprev:
Today, I started the Carnage Room Challenge. In this challenge, the infection begins when a victim downloads a zip file containing a document with a macro. Once the machine is infected, it communicates with the domain with an encrypted. I am still halfway through.
Next, I reviewed the cryptography theory, and now I am looking at the practical part, which involves John the Ripper. I learned a lot about symmetric and asymmetric encryption and HMACs.
Then, I configured Obsidian to use Ollama. Since local models aren't powerful, I found a solid use case for them. I'm using them with Obsidian for proofreading technical articles. This boosts my productivity while keeping my data private. I'm using Harper for spell checking and Local GPT for model usage.
I finished the remaining lectures and started working on the SQL Week song problem set.
-
Hello again! :ablobcatpoprev:
Today started off on the wrong foot because there was no power until noon. Despite this setback, I tried to salvage the day. I finished the NetworkMiner room. Then, I installed Wine on my Kali VM to run the NetworkMiner executable.
Next, I watched the CS50 lecture and practiced writing some SQL scripts. I have some experience with SQL from my computer science degree.
Lastly, I participated in the UTCTF and worked on Forensic Challenges involving PCAP files.
-
Hello again! :ablobcatpoprev:
Today started off on the wrong foot because there was no power until noon. Despite this setback, I tried to salvage the day. I finished the NetworkMiner room. Then, I installed Wine on my Kali VM to run the NetworkMiner executable.
Next, I watched the CS50 lecture and practiced writing some SQL scripts. I have some experience with SQL from my computer science degree.
Lastly, I participated in the UTCTF and worked on Forensic Challenges involving PCAP files.
-
Hello again! :ablobcatnodfast:
Today, I reviewed Linux Terminal commands, Command Prompt commands, and finally, PowerShell. Understanding Powershell was extremely useful because I have had less exposure to it than to Terminal and CMD.
After reviewing the CLI material, I moved on to networking concepts with practical use cases. This will greatly boost my learning.
Lastly, I worked on a DNA problem set in the Python section of the CS50 course. I'm working with CSV files and trying to create a program that performs DNA profiling.
-
Hello again! :ablobcatnodfast:
Usually, Sundays are more productive because I get extra practice in, but today I ran into an issue.
I started with some challenges from DiceCTF. Specifically, I did the misc challenge with the PCAP file, and then my PC froze.
I checked the event viewer and the disk for corruption, but there were no issues. I also ran the Windows Memory Diagnostic Tool, but it didn't help much.
My last option is to run MemTest86. I plan to run the tests soon. There is a high probability that the issue is caused by faulty or unstable RAM.
-
Hello again! :ablobcatnodfast:
Usually, Sundays are more productive because I get extra practice in, but today I ran into an issue.
I started with some challenges from DiceCTF. Specifically, I did the misc challenge with the PCAP file, and then my PC froze.
I checked the event viewer and the disk for corruption, but there were no issues. I also ran the Windows Memory Diagnostic Tool, but it didn't help much.
My last option is to run MemTest86. I plan to run the tests soon. There is a high probability that the issue is caused by faulty or unstable RAM.
-
SEC0 from @RealTryHackMe done.
I know it’s a fundamental's certification, but I treated it like it wasn’t. Went back over weak areas. I completed the exam.
Next step: SEC1.
-
SEC0 from @RealTryHackMe done.
I know it’s a fundamental's certification, but I treated it like it wasn’t. Went back over weak areas. I completed the exam.
Next step: SEC1.
-
Hello again! :ablobcatnodfast:
Today, I finished the Python lectures. Since I already have experience with Python, I will start doing the problem sets after I take the SEC0 exam.
I also worked on the network analysis rooms in TryHackMe. Today, I studied how to analyze man-in-the-middle attacks and ARP poisoning using different filters and patterns. One common pattern is ARP flooding.
Lastly, I feel confident enough to take the SEC0 exam, the practical equivalent of the CC exam offered by ISC2, which I have already taken.
Wish me luck!
-
Hello again! :ablobcatnodfast:
Today, I finished the Python lectures. Since I already have experience with Python, I will start doing the problem sets after I take the SEC0 exam.
I also worked on the network analysis rooms in TryHackMe. Today, I studied how to analyze man-in-the-middle attacks and ARP poisoning using different filters and patterns. One common pattern is ARP flooding.
Lastly, I feel confident enough to take the SEC0 exam, the practical equivalent of the CC exam offered by ISC2, which I have already taken.
Wish me luck!
-
Hello, again :ablobcatnodfast:
Today's weekend and I spent a lot of time working on a project for my college, and made a wrapper for local LLM model.
I will use it to also test command injections, and various different attack vectors, I can use on it.
I wish to be more productive tomorrow, as I will be preparing for SEC0, and soon take the SEC1 as well.
-
Hello, again :ablobcatnodfast:
Today's weekend and I spent a lot of time working on a project for my college, and made a wrapper for local LLM model.
I will use it to also test command injections, and various different attack vectors, I can use on it.
I wish to be more productive tomorrow, as I will be preparing for SEC0, and soon take the SEC1 as well.
-
Hello, again :ablobcatnodfast:
Another horrible day, the electricity was officially cut for more than 18 hours, no water, no electricity.
I did try to salvage this day, by doing a little bit of assembly, specifically working on different kind of system calls like write and read, while understanding how all of this connects well with C. Everything is connected.
Since yesterday, I couldn't do CS50 due to no electricity, I am gonna finish up the lectures on python, though I am already pretty comfortable with writing python code.
-
Hello, again :ablobcatnodfast:
Another horrible day, the electricity was officially cut for more than 18 hours, no water, no electricity.
I did try to salvage this day, by doing a little bit of assembly, specifically working on different kind of system calls like write and read, while understanding how all of this connects well with C. Everything is connected.
Since yesterday, I couldn't do CS50 due to no electricity, I am gonna finish up the lectures on python, though I am already pretty comfortable with writing python code.
-
Hello, again :ablobcatnodfast:
Today is officially the worst day of this month, no electricity whole day, I wasn't able to get much done, I did do a little bit of packet analysis.
I can confidently identify common nmap scans. It all boils down to the TCP three way handshake for the TCP connect scan, and Stealth scan.
UDP scan utilizes the icmp protocol to scan the open ports.
-
Hello, again :ablobcatnodfast:
Today is a special day because two great things happened to me. First, I reached the top one percent of @RealTryHackMe. That was one of my goals for this year, so congratulations to me! Now, I have set my sights higher. I want to reach the top one thousand rank on TryHackMe.
Something extraordinary happened today. I was in the GingerHacker Initiative Discord community chatting with the founder. Since I spent my savings on the TryHackMe premium annual subscription, I told him how I'm preparing for SEC1 because it's practical and more affordable than Security+. He immediately offered to sponsor my certification to help me progress in my career. He decided to sponsor both SEC0 and SEC1. Shout out to the #GingerHacker!
It was a crazy and wonderful day! Also, I submitted the speller problem, and now I'm moving to week six.
Python rocks! 💪
-
Hello, again :ablobcatnodfast:
Today is a special day because two great things happened to me. First, I reached the top one percent of @RealTryHackMe. That was one of my goals for this year, so congratulations to me! Now, I have set my sights higher. I want to reach the top one thousand rank on TryHackMe.
Something extraordinary happened today. I was in the GingerHacker Initiative Discord community chatting with the founder. Since I spent my savings on the TryHackMe premium annual subscription, I told him how I'm preparing for SEC1 because it's practical and more affordable than Security+. He immediately offered to sponsor my certification to help me progress in my career. He decided to sponsor both SEC0 and SEC1. Shout out to the #GingerHacker!
It was a crazy and wonderful day! Also, I submitted the speller problem, and now I'm moving to week six.
Python rocks! 💪
-
Hello, again :ablobcatnodfast:
Today, I started working through the network analysis rooms on TryHackMe. I used Wireshark to analyze PCAP files, which went smoothly since I have experience with it. However, I learned how to use statistics more effectively.
Lastly, I found a way to reduce collisions using a better hashing function. Instead of using just the first character to build the hash table, I multiplied the characters to increase entropy. I'm only six seconds behind the staff algorithm.
I also found a way to handle the apostrophe. Since I subtract 65 from the characters, the result is negative, which leads to a segmentation fault. I simply used a conditional statement to handle it.
-
Hello, again :ablobcatnodfast:
Today, I started working through the network analysis rooms on TryHackMe. I used Wireshark to analyze PCAP files, which went smoothly since I have experience with it. However, I learned how to use statistics more effectively.
Lastly, I found a way to reduce collisions using a better hashing function. Instead of using just the first character to build the hash table, I multiplied the characters to increase entropy. I'm only six seconds behind the staff algorithm.
I also found a way to handle the apostrophe. Since I subtract 65 from the characters, the result is negative, which leads to a segmentation fault. I simply used a conditional statement to handle it.
-
Hello, again :ablobcatnodfast:
Today, I started working through the network analysis rooms on TryHackMe. I used Wireshark to analyze PCAP files, which went smoothly since I have experience with it. However, I learned how to use statistics more effectively.
Lastly, I found a way to reduce collisions using a better hashing function. Instead of using just the first character to build the hash table, I multiplied the characters to increase entropy. I'm only six seconds behind the staff algorithm.
I also found a way to handle the apostrophe. Since I subtract 65 from the characters, the result is negative, which leads to a segmentation fault. I simply used a conditional statement to handle it.
-
Hello, again :ablobcatnodfast:
Today, I started working through the network analysis rooms on TryHackMe. I used Wireshark to analyze PCAP files, which went smoothly since I have experience with it. However, I learned how to use statistics more effectively.
Lastly, I found a way to reduce collisions using a better hashing function. Instead of using just the first character to build the hash table, I multiplied the characters to increase entropy. I'm only six seconds behind the staff algorithm.
I also found a way to handle the apostrophe. Since I subtract 65 from the characters, the result is negative, which leads to a segmentation fault. I simply used a conditional statement to handle it.
-
Hello, again :ablobcatnodfast:
Today, I started working through the network analysis rooms on TryHackMe. I used Wireshark to analyze PCAP files, which went smoothly since I have experience with it. However, I learned how to use statistics more effectively.
Lastly, I found a way to reduce collisions using a better hashing function. Instead of using just the first character to build the hash table, I multiplied the characters to increase entropy. I'm only six seconds behind the staff algorithm.
I also found a way to handle the apostrophe. Since I subtract 65 from the characters, the result is negative, which leads to a segmentation fault. I simply used a conditional statement to handle it.
-
Hello, again :ablobcatnodfast:
Today, I finished the remaining rooms in the Pre-Security Pathway. I reviewed programming concepts and the CIA triad, and I can finally focus on the network analysis rooms.
I also solved several interactive challenges involving the Caesar cipher to demonstrate symmetric encryption, and they were genuinely fun to work through.
Next, I was almost able to complete the speller code, but it still suffers from low performance because I have not yet improved the hash function, which I will work on tomorrow.
I am using a hash table with linked lists for collision handling. Currently, it takes O(n) time in practice due to poor distribution. Collisions are handled using chaining, where each bucket stores a linked list. However, I am only using 26 buckets, and the hash function returns a value based solely on the first character of the word. Each new node is prepended to the list.
As a result, lookups require linear traversal through long linked lists, which significantly impacts performance. Tomorrow, I will work on improving the hash function and compare the results.
-
Hello, again :ablobcatnodfast:
Today, I finished the remaining rooms in the Pre-Security Pathway. I reviewed programming concepts and the CIA triad, and I can finally focus on the network analysis rooms.
I also solved several interactive challenges involving the Caesar cipher to demonstrate symmetric encryption, and they were genuinely fun to work through.
Next, I was almost able to complete the speller code, but it still suffers from low performance because I have not yet improved the hash function, which I will work on tomorrow.
I am using a hash table with linked lists for collision handling. Currently, it takes O(n) time in practice due to poor distribution. Collisions are handled using chaining, where each bucket stores a linked list. However, I am only using 26 buckets, and the hash function returns a value based solely on the first character of the word. Each new node is prepended to the list.
As a result, lookups require linear traversal through long linked lists, which significantly impacts performance. Tomorrow, I will work on improving the hash function and compare the results.
-
Hello, again :ablobcatnodfast:
TryHackMe recently introduced new rooms to their pre-security pathway, and I went through some of them today. The rooms mostly focus on operating systems, hardware, and basics, which I'm already familiar with, so I finished most of them. I'll work on the rest tomorrow so I can continue the SOC L1 pathway. Lastly, I achieved a milestone: I was not only able to create linked lists in C, but also visualize how I was using the pointers and how the chain of nodes was being stitched together perfectly while working on the speller problem from CS50.
-
Hello, again :ablobcatnodfast:
TryHackMe recently introduced new rooms to their pre-security pathway, and I went through some of them today. The rooms mostly focus on operating systems, hardware, and basics, which I'm already familiar with, so I finished most of them. I'll work on the rest tomorrow so I can continue the SOC L1 pathway. Lastly, I achieved a milestone: I was not only able to create linked lists in C, but also visualize how I was using the pointers and how the chain of nodes was being stitched together perfectly while working on the speller problem from CS50.
-
Hello, again :ablobcatnodfast:
On weekends, I focus on practicing what I learned during the week. Today, I worked on level 26 of Bandit from OverTheWire.org. It was a doozy level. I didn't know that changing the terminal size could affect the more utility, but I finally found a way to access vim from more. Then, I was able to get a shell.
-
Hello, again :ablobcatnodfast:
On weekends, I focus on practicing what I learned during the week. Today, I worked on level 26 of Bandit from OverTheWire.org. It was a doozy level. I didn't know that changing the terminal size could affect the more utility, but I finally found a way to access vim from more. Then, I was able to get a shell.
-
Hello, again :ablobcatnodfast:
Today, I went through the Computer 101 module on pwn.college, and I learnt to not only write x86-64 assembly code, but also to play with pointers, though it's not the first time I have come across them. In the CS50 course I am learning how to use pointers in C. Besides that I used GDB for the first time, aka GNU Debugger, and it's a pretty handy debugging tool for programs.
-
Hello, again :ablobcatnodfast:
Today, I went through the Computer 101 module on pwn.college, and I learnt to not only write x86-64 assembly code, but also to play with pointers, though it's not the first time I have come across them. In the CS50 course I am learning how to use pointers in C. Besides that I used GDB for the first time, aka GNU Debugger, and it's a pretty handy debugging tool for programs.
-
Hello, people :ablobcatpoprev:
Before I share what I learned today, I would like to explain something. I had been using Twitter to post my progress, but the user experience and overall vibe had seriously degraded to the point that I didn't want to post my progress there anymore.
Thankfully, I have an account here, so I'm going to share my progress here instead.
Today, I went through the new rooms in the pre-security pathway on @RealTryHackMe. Since I have already studied the basics of computers and am comfortable with Linux Terminal, Powershell, and Command Prompt, it was fun because of the interactive exercises.
-
Hello, people :ablobcatpoprev:
Before I share what I learned today, I would like to explain something. I had been using Twitter to post my progress, but the user experience and overall vibe had seriously degraded to the point that I didn't want to post my progress there anymore.
Thankfully, I have an account here, so I'm going to share my progress here instead.
Today, I went through the new rooms in the pre-security pathway on @RealTryHackMe. Since I have already studied the basics of computers and am comfortable with Linux Terminal, Powershell, and Command Prompt, it was fun because of the interactive exercises.
-
Hello, people :ablobcatpoprev:
Before I share what I learned today, I would like to explain something. I had been using Twitter to post my progress, but the user experience and overall vibe had seriously degraded to the point that I didn't want to post my progress there anymore.
Thankfully, I have an account here, so I'm going to share my progress here instead.
Today, I went through the new rooms in the pre-security pathway on @RealTryHackMe. Since I have already studied the basics of computers and am comfortable with Linux Terminal, Powershell, and Command Prompt, it was fun because of the interactive exercises.