- 15
- 16 581
Maksym Chernikov
เข้าร่วมเมื่อ 5 ส.ค. 2016
A software/cybersecurity engineer who loves playing drums.
HackTheBox - PermX (Live Hacking Walkthrough)
Machine: app.hackthebox.com/machines/PermX
My personal cheatsheet: github.com/maksyche/pentest-everything
Disclaimer:
This machine is now retired, so I can freely show the walkthrough.
#Hacking #CTF #hackthebox
00:00 Intro
00:10 Reconnaissance
11:15 Vulnerable LMS
23:15 www-data Enumeration
32:47 MariaDB Enumeration
40:15 User Shell
43:11 Privilege Escalation
55:20 Rooted
My personal cheatsheet: github.com/maksyche/pentest-everything
Disclaimer:
This machine is now retired, so I can freely show the walkthrough.
#Hacking #CTF #hackthebox
00:00 Intro
00:10 Reconnaissance
11:15 Vulnerable LMS
23:15 www-data Enumeration
32:47 MariaDB Enumeration
40:15 User Shell
43:11 Privilege Escalation
55:20 Rooted
มุมมอง: 537
วีดีโอ
AI Basics: Building Text Classification Neural Network (Spam Detector)
มุมมอง 999หลายเดือนก่อน
I hope I didn't make any mistakes in this video. Write me a comment if you have any questions. Theory articles: github.com/maksyche/useful-theory Source code: github.com/maksyche/spam-detector 00:00 Intro 00:28 Understanding the task 01:08 Tokenizer 01:48 Word Embeddings 03:44 Neural Network Intro 05:00 Layers 06:13 Forward Propagation 08:24 Backpropagation 13:47 Results #neuralnetworks #ai #tu...
Thrice - Silhouette (Drum Cover)
มุมมอง 853 หลายเดือนก่อน
One of the best songs from one of my favourite bands. Reuploaded with better sound quality. Disclaimer: I do not own the rights to this song; they belong to the original owner of the music. Please, do not ban the video; give ad revenue to the owner. Thank you. #DrumCover #Thrice #Silhouette
Paramore - Careful (Drum Cover)
มุมมอง 7344 หลายเดือนก่อน
Disclaimer: I do not own the rights to this song; they belong to the original owner of the music. Please, do not ban the video; give ad revenue to the owner. Thank you. #DrumCover #Paramore #Careful
Paramore - Decode (Drum Cover)
มุมมอง 1.3K4 หลายเดือนก่อน
I think I finally managed to make a decent mix (SSD5 and Waves plugins). Disclaimer: I do not own the rights to this song; they belong to the original owner of the music. Please, do not ban the video; give ad revenue to the owner. Thank you. #DrumCover #Paramore #Decode
My Hacking Journey and Recommendations for Beginners
มุมมอง 9K5 หลายเดือนก่อน
I'll try to answer your questions if you have any. Useful links: - My cheatsheet: github.com/maksyche/pentest-everything - Tryhackme: tryhackme.com - HackTheBox: www.hackthebox.com/ - Privilege Escalation Courses: www.udemy.com/course/linux-privilege-escalation/ www.udemy.com/course/windows-privilege-escalation/ - TjNull's Machine List: docs.google.com/spreadsheets/u/1/d/1dwSMIAPIam0PuRBkCiDI88...
Thrice - The Weight (Drum Cover)
มุมมอง 1956 หลายเดือนก่อน
Rerecorded with better sound quality. Disclaimer: I do not own the rights to this song; they belong to the original owner of the music. Please, do not ban the video; give ad revenue to the owner. Thank you. #drumcover #Thrice #TheWeight
Thrice - Of Dust and Nations (Drum Cover)
มุมมอง 1397 หลายเดือนก่อน
Disclaimer: I do not own the rights to this song; they belong to the original owner of the music. Please, do not ban the video; give ad revenue to the owner. Thank you. #drumcover #Thrice #OfDustAndNations
Manual Exploitation of Common SQL Injections (Playground and CheatSheet Included)
มุมมอง 4398 หลายเดือนก่อน
SQLI playground application: github.com/maksyche/mini-sqli-playground My personal cheatsheet: github.com/maksyche/pentest-everything #Hacking #SQLI #OSCP
Linkin Park - Numb (Drum Cover)
มุมมอง 2.6K9 หลายเดือนก่อน
Disclaimer: I do not own the rights to this song; they belong to the original owner of the music. Please, do not ban the video; give ad revenue to the owner. Thank you. #drumcover #LinkinPark #Numb
Hack The Box - Zipping (Live Hacking Walkthrough)
มุมมอง 18110 หลายเดือนก่อน
Machine: app.hackthebox.com/machines/Zipping My personal cheatsheet: github.com/maksyche/pentest-everything Disclaimer: This machine is now retired, so I can freely show the walkthrough. #Hacking #CTF #HackTheBox
Hack The Box - Sau (Live Hacking Walkthrough)
มุมมอง 26910 หลายเดือนก่อน
Machine: app.hackthebox.com/machines/Sau My personal cheatsheet: github.com/maksyche/pentest-everything Disclaimer: This machine is now retired, so I can freely show the walkthrough. #Hacking #CTF #HackTheBox
Thrice - Silhouette (Bass Cover)
มุมมอง 156ปีที่แล้ว
One of the best songs from one of my favourite bands. Disclaimer: I do not own the rights to this song; they belong to the original owner of the music. Please, do not ban the video; give ad revenue to the owner. Thank you. #BassCover #Thrice #Silhouette
can u tell how tobe good in source code review??like how u used to find xss,lfi,sqli etc in open source applications????
Tbh, I'm not an expert in white box bug bounties. But I still do code analysis a lot at work. Static code analysis tool is your best friend for simple vulnerabilities like the ones you listed. But usually they are covered/fixed cause they are pretty easy to find. I'd invest in learning the application thoroughly and looking for vulnerabilities related to its business logic (finding vulnerable integrations, edge cases, etc.).
I’m looking to get into cyber security but I’m not really sure where to start. Do you have any resources you recommend, or did you simply grind hackthebox? Great video, by the way. I can’t seem to get enough of this stuff recently😭
Hey max,Best of lucks !
Thanks. You too!
Parabéns. Toca com perfeição!!
Nice video, it is great to understand the underhood details. Will it be more AI Basics videos in the future ?
Thanks! I'm considering some audio programming videos, and will probably touch AI topics in them.
great work man. subbed and liked
Excellent video brother.
Go liitle high keep it up man 🔥❤️🔥
Awesome!
if may i ask, i came to different path's about my future I want to get in university ( as i know certificates do more than enough, and I'll obviously study and learn on my own from the internet) but i would like to get a degree. However I'm confused between CS and Cyber security bachelors. As i know CS can open alot of doors and give me a lot of open area to work but would cyber degree it be better for a cyber security role? Additional info* Since im non-eu and my home country don't have a big market for IT or Cyber i was thinking about getting into an EU university such as the ones in germany..etc for better opportunities in the future٫ world wide i mean. Soo my question is should i get bachelor in CS or in Cyber security. (Of course with the count of certificates for both) And should i study in my home country with low-level degree or study abroad on high-level degree for more job opportunities? Thanks in advance.
hey TLDR: I'd recommend CS. I don't think the exact degree matters for work. Try to swap roles and imagine yourself as a hiring manager who needs to fill in the role. Will you choose one with a more specific degree over skills and certificates? Definitely not. Will you choose one with more specific degree over another one with the same skillset and certificates? Most likely not. You'll look deeper into soft skills and overall "fit" for the team. In addition, you actually need to learn a lot how different systems work to be a good cybersecurity specialist. And a general CS degree might be better for that. You'll definitely learn cybersecurity specifics preparing for certificates and doing actual work. Also, As a fellow 3rd world country expat and a CS bachelor, I would recommend you to pick the CS one to have better visa and work options. I got mine in my home country and I never had problems with it, but it might be better to get one in Germany for the knowledge and the people you meet. Also, it should be a lot easier to stay in Germany after the university than relocate there with a working visa if you're considering that. Best luck
🥁💪🏻🔥
Nice one man, new subscriber ✌🏻
great job man
Caraca ficou muito bom vey, meus parabéns
Great job man! What kit do you have?
Thanks! This is Roland TD-30 with a couple of additional cymbals
@@maksyche That is so cool! What model are the additional cymbals?
@@josephwarth939 I think they are Roland CY-5 for splash and CY-8 for china
damn this goes crazy!!
Bro. Like you were paid to fill in. You definitely held back too! And respect for us ekit drummers with neighbors. Pro status man
The best
Top demais !
Great video, Maks. Keep it up! 👍
nice one pal
🤘🔥🥁
Good Job brother.. Amazing for you..New Subs for you 👍😎🤘🙏
Thanks a lot!
Sick! You should enter the iRock Drum Contest!
Wow. Thanks a lot. Nice to see you here I think I missed the deadline and I'm not that good yet :D
Perfectly done my dude <3
😮 nice
May I know what VM do you use on Mac to host Kali?
I've been using VMware fusion for the past 4 years. Cannot say if it's better or worse than others, but I found settings that work great for me
@@maksyche Thanks you. I just learned Cybersecurity for 3 months now and I am using VMware fusion too but something I use UTM to install Parrot OS and Vulnhub Machine because on Vmware Fusion doesn't support.
@@khunjame7 Parrot provides an ARM image that's suitable for VMware. I haven't tried to install it, but that's what they say on the website. It might work for you. Anyway, I'm actually thinking about switching from Kali to something more desktop-friendly and stable (cause I still have problems with different screens sizes and some graphic issues). Almost all tools I use are available for every linux, so it should be very easy to switch.
Thx bro
this video shows how turning your passion into your job ruins it.
It often does, but I think you can still find a way to make income out of your passion without ruining it if you're patient enough
Can you make a video or guide on how to go from zero to passing the oscp. Or just tips idc
@@CSchwan58273 I passed mine in 2021 and the exam changed at least twice after, so my experience is a little bit outdated. But I'll think about it
i also want to learn but i have bought mac m1 does it give any problems....any ideas..
Kali linux (which is recommended for OSCP) fully supports ARM, just install it as a VM. Most of the tools you need, work out of the box, others can be replaced with similar ones. The main problem is that sometimes you need to compile exploits for x86 and cross-compilers usually have many issues. In this case I recommend you to rent a VM in any cloud when you need it. Smallest Windows/Linux VMs are usually covered by the "free" plan and they are enough for such tasks. Best luck
@@maksyche thanku..
Hey can you make a vid about how to avoid SQL injections and make more secure website and web apps pls i'm a beginner in web development 🙏
Hi! I'm not thinking about such a video for now, but maybe later. SQL injection prevention implementation depends on the language and the library you use, but generally, you should avoid any concatenation or parametrization of SQL queries using string utils. You should always rely on prepared statements. Also, static code analyzers (like SonarQube) highlight you almost all possible SQL injections, so it's helpful to use them in your IDE (or even better in build pipelines of your project).
@@maksyche thankyou for your guidance 🙏😄
incredibly dense video - I hope I don't lose this as it's not in my direct path right now but will be really helpful as I build out skills and try and choose my field
If I find enough time to make videos, I hope you'll see more of them in the future.
Congrats on making the OSCP Cert! I am just starting out aswell, learning about linux OS, hackthebox and youtube videos. I don't have that much time to study so it goes slow but I am motivated when I sit down to study, to understand what I am doing.
I didn't mention this in the video, but with that learning pace and having a full-time job on top, I accumulated some health issues. A healthier work-life balance and going slow might be even better in the long run. Best luck with your journey
Wow congrats! That's pretty amazing that you were able to accomplish OSCP so quickly and did it as part of your quest to learn more about cybersecurity.
Killed it! What kind of electric kit is that?
Thank you! It's an old Roland TD-30. I modified the frame and added a couple of cymbals
Great job!
dude made that look easy. good job
thanks, great video
Alesis nitro max?
Roland TD-30 with a couple of additional cymbals
I came from reddit. Keep up the good work mate!
Great Job! 🎉I still haven’t recorded myself playing anything
nice
Thankyou redditor ! I rll apreeciate thissss ❤ viddddddd