Help

Ask questions and find answers

Forum Widgets

Recent Discussions

Modern Encryption Issue
I'm on the last training under Modern Encryption training. I'm getting this error: ─$ openssl enc -des-ede3-cbc -d -pbkdf2 -nosalt -in encrypted_file_3DES.enc -out DES3 enter des-ede3-cbc decryption password: bad decrypt 139655774025024:error:06065064:digital envelope routines:EVP_DecryptFinal_ex:bad decrypt:../crypto/evp/evp_enc.c:610: The key is in text file from previous steps. I'm on step #7. I used the same syntax for decryption as earlier in this series. I tried various things, but still getting this error. I added the -a switch as well.
Solved
AlPatel
2 days ago
help & support
immersive labs application security
0likes
11Comments
AI Blue Teaming Foundations: Introduction to AI Blue Teaming (Part 2) - Q7 Impossible
https://iml.immersivelabs.online/v2/labs/ai-blue-teaming-foundations-introduction-to-ai-blue-teaming-part-2 Is it just me? OR is this lab impossible to complete?
LewisMutton
2 days ago
immersive labs
questions & feedback
0likes
0Comments
Cross_site Scripting DOM-based XSS vulnerability
I am doing the Cross-Site Scripting (XSS) DOM-based XSS lab and I am trying to get the last step of the lab which is identifying the DOM-based XSS vulnerability. I am pretty sure it would not be something like <script> alert("xss") </script> since I do not think Javascript would handle it. I am leaning towards the event handlers like onerror but haven't gotten it figured out quite yet. Any clues or suggestions would be appreciated.
Solved
rculvergoblue
2 days ago
immersive labs
0likes
4Comments
Ransomware: LockBit
I can't figure out what question 7 is looking for as the answer. I ensured I was looking at logs with an EventType of SetValue, I ensured it was LockBit.exe doing the event, but nothing I've tried from that works for the answer. Either I'm querying something wrong, or
ArthurDent
3 days ago
help & support
immersive labs
0likes
4Comments
Immersive Labs – APT29: Threat Hunting with Splunk
Hi everyone, I’m currently working through the Immersive Labs – APT29: Threat Hunting with Splunk lab and got stuck on Question 10. Question: A PowerShell script was initially executed to extract encoded data from an image file. What is the full ParentCommandLine field value used to execute this? What I’ve tried so far: Searched PowerShell logs (EventCode 4103 / 4104) in Splunk Looked for base64/encoded content indicators (e.g., FromBase64String, -enc, IEX) Filtered for image-related activity (e.g., .jpg, .png) Reviewed process creation context but struggling to identify the exact ParentCommandLine. Appreciate any guidance—trying to understand the hunting logic, not just the answer. Thanks in advance!
Piyush
4 days ago
immersive labs
1like
1Comment
Investigating IAM Incidents in AWS: Preparation - Question 7
For the question: The ‘MetrolioQA’ IAM role in your account grants write access to a ‘metrolio’ role from another account. What is the full name of the external principle? I can't seem to find insight onto the role. I am wondering about what is the location of the GUI I should be looking into more of. I have mostly been digging throughout the csv download for any possible insights as well as the IAM access analyzer but I cant seem to get any good leads. Done through the MetrolioIAMAnalyst AWS role account. Summary: I am wondering if there is any direction that can be provided in which I can look into more for finding external principles.
Solved
kevinh
5 days ago
help & support
immersive labs
immersive labs application security
0likes
1Comment
Mobile Malware: Anubis Malware (Offensive) - Question 8,9
despite obtaining the encrypted value, seems like RC4 decryption doesn't work with zanubis as the password. I am wondering where should I pivot into? For question 9: where should I look into in order to get started?
Solved
kevinh
5 days ago
help & support
immersive labs
immersive labs application security
questions & feedback
0likes
1Comment
Lab not getting complete even it is correct
I am working on C# / ASP.NET API from the I am doing ASP.NET Core API: Username Enumeration lab, this lab task 1 is always showing incomplete even after I am generating correct results [HttpPost("login")] public ActionResult<LoginResponse> LoginUser(LoginRequest request) { var user = _repository.GetUserByEmail(request.Email); var passwordValid = _hashingService.VerifyPassword( request.Password, user.Password ); if (user == null || !passwordValid) { return Unauthorized(); } return new LoginResponse { Jwt = _jwtService.GenerateJwt(user.Id, user.Email) }; } Could you please help? I need to complete this today? Regards Nagesh
Nageswara5599
10 days ago
application security
0likes
3Comments
Lesson 7: Windows File Permissions
I need help with question 4: The answer is clearly Administrators based on the screenshot. I would greatly appreciate assistance on this.
Shelly123
18 days ago
help & support
immersive labs
0likes
1Comment
Need help in Splunk Lab!
I am attempting the Splunk collection under Upskill. In the final lab i.e. Demonstrate your skill lab, I am getting stuck at a particular task. This is the prompt that I need to solve. The problem is there is no field for Destination IP in the log. Whenever I search according to the prompt, no results are returned and the question won't take 0 as an answer. Please help me move forward.
SushiPanda
25 days ago
defensive cyber
immersive labs
tips & tricks
0likes
2Comments

Get support from the community

If your question has been answered, help others by clicking: