Erica 💜🦊 @packetcharmer@witches.town

@bloatware Oh god, I really could use that today. Tried to have a birthday party that ended in disaster.

@varx so the technologies have improved somewhat, but incumbent ISPs seem to want to do the bare minimum to upgrade their networks (which I think is their biggest sin)

@varx I’ve seen some business plans also ban hosting servers (I know Comcast does this) mostly because of the upstream limits of DOCSIS

@varx Mesh networks solve the last mile issue, but they don’t replace long haul trunks. In a pinch you can MacGyver a solution out of either satellite or shortwave radio links(shortwave only if you’re really desperate and don’t mind losing 99.999% of your network capacity, but it would work in a pinch)

@varx so in their defense ISPs often forbid servers by policy because most residential internet distribution technologies (ADSL, DOCSIS, PON FTTP, etc.) both heavily oversubscribe as well as prioritize downstream over upstream. Small servers are usually ok, but anything that could be considered production runs the risk of causing congestion for other clients.

@Leucrotta *offers lots of hugs*

@guerrillarain wow, your boyfriend had no OPSEC

@ashkitten @KitRedgrave Hell yeah

@KitRedgrave I mean knowing Linux is great, makes things easier once you compromise those servers, but most corporations have their auth centered around windows workstations controlled by active directory so you’ll want to know how to break that too.

@KitRedgrave the real trick is figuring out how the tools work well enough that you still know what to do when they fail, because they will fail on you. I’ve gotten to the point that I can fully compromise a Windows domain without using metasploit at all, just Responder, hashcat, impacket, and mimikatz. The main value of Metasploit to me is that meterpreter makes post-exploitation a lot easier.

@KitRedgrave @6A62 This hack was a big deal at the time

@KitRedgrave reverse engineering is a really good skill for offensive security and security research