Forum Widgets
Recent Discussions
Hack Your First Web App: Ep.4 Missing Cookie
I'm stuck on the last question of Hack Your First Web App: Ep.4. I have repeated the XSS over and over again successfully, but it does not give me a cookie called "xss-token". It gives me a cookie with some letters and numbers, and those aren't the answer to the question. What can I do from here?CSM Tip: Have A Summer Series! Are YOU Taking Advantage Of Summer?
Being the comedian I am, I was going to title this tip “Have Your Own Personal Summer series” but I didn’t want the core message of this idea to get lost in my wacky humor. Working with customers over the years across the globe, I’ve seen a trend. What is that trend? People on the team take their annual holidays to enjoy the weather, spend time with their families when the kids are out of school, spend more time in the fresh air away from screens, etc. Thus, structured programs and large projects wane a little bit as opposed to the fervor that resumes as autumn hits. One of the ways customers overcome this and stick to their personal growth and development plans as well as the broad organizational/department plans is to host “Summer Series”. What is that you say? Well, it is sometimes a large group activity or challenge over the summer (have you checked out the challenge labs in the Exercise section of Immersive?) Or, it’s a weekly/biweekly/monthly “workshop” drop in session that team members can attend (when they are not on their well-earned annual holidays) to learn more on a topic (come on, I KNOW you want to learn more about cutting edge topics like secure coding in the age of integrated LLM in your apps and systems). So, be the voice on your team to suggest this or, like my wacky idea for a tip topic suggests, implement your own Personal Summer series. You will be glad you did.
It seems correct answer is not accepted.
I think my answer is correct, however, it is not accepted. Here is the question: Use replace_string() to remove carriage returns (\r) and newline (\n) literals from the SyslogMessage column. Provide your completed replace_string function as the answer. Here is my answer: replace_string(SyslogMessage, "\\n\\r", "") Whole query: Syslog | extend CleanMSG = replace_string(SyslogMessage, "\\n\\r", "") I might be missing something here, however, can't figure out. Appreciate any hints.Welcome to this week's new members
Hey & welcome DCadet rahunlsingjdks mlieberson Sethughes georgec nasim_nasri JA CurlyWurly Otified Avinassh squareCutPizza thbrowne jkurdz Mark seanfriedman If you're here for support, head to our help forum and if you want to get to grips on the sort of content we put out on the community, check out SabrinaKayaci's latest blog on AI generated code. Can you identify the vulnerability in the AI generated code? Chat GPT couldn't... Let us know!Welcome to this week's new members
Please join me in welcoming our newest community members devin_wolf miketyhs aariz Ed852 tushar RichTaylor peti29 Mango iacontir f31i1031 jbanasiak Husky10 If you're here for support, head to our help forum and for general cyber chat, check out our community forum & introduce yourself to our network of cyber experts while you're there!Welcome new members!
This week we welcomed julienberbach123 a_mishra Akash Olivier225 rayperkins brianwall hamzagondal Stoney Ola teejay12 kemi rathodboy Baldguy Ranger007 VC_1 Tushaar prtkpahuja nasigorengusa AlfredS fruitsnacks JDeVillar ME uch MunierAl-Sheikh Ericmccl OnTheLookout Shane StevenClaesswinnen thepoplady Abraxas Attemployee001 MatthewRasburn samuelasiedu smh85 reid056 Felention 👋 it's great to have you in the community! Why not check out the help forum if you want to give or get support, watch the recording for this week's Labs Live webinar where MattParven walked through a AWS Challenge lab.
Human Connection Lab 7 - AD - password not working
Good afternoon, I've been trying to work through Lab 7 AD for a very long time. However, the password I discovered on the WS01 box (using SharpUp) does not work for the username it also provides. I am unable to login with it at all - is this because of the apostrophe in the password? I have tried to use escape characters, quotes, single quotes and escape chars. Help Me, Obi-Wan, you're my only hope.
Did anyone actually win anything from the Human Connection Challenge?
It's been quite a while since the challenge ended, and still no official announcement about the winners. There was no live prize draw, and it feels like the whole thing just silently wrapped up. Don’t get me wrong, I’m not mad about not winning a major prize or anything. But it seems like nobody won anything ? I haven’t seen a single post from anyone saying “thank you” or mentioning they received something. That’s... odd, right? If you won a PS5, headphones, or any of the big prizes, please let us know. I’ll honestly be happy if I’m wrong and people did get rewarded. 😊 Just curious if there were actual winnersThoughts on AI-powered cyber tools...?
Hey everyone, I went to InfoSec in London recently, and it seemed like almost every stand had "AI" as a feature: AI-powered SIEMs, anomaly detection systems, etc. What's are people's opinions on all this marketing? Have you seen vast improvements in infosec systems with AI features, or do you think this is more the latest sales and fund-raising mechanism? Probably somewhere in between... I'd love to hear of any examples where you've had experience with new AI tools.
