TCM Security

Want to attend our exclusive bi-weekly live workshops for Academy members? With 50% off your first payment on All-Access Memberships right now, there's no better time to join! Use code SUMMERHAX24 😄 #OneOfUs https://lnkd.in/ghjPS7_i Here's what you can look forward to: 📅 July 25th: OSINT Workshop #1 with Heath Adams. Dive into open source intelligence with insights directly from Heath Adams in this exclusive workshop. 📅 August 8th: OSINT Workshop #2. Conclude your OSINT journey with enhanced recon skills and a newfound appreciation for better opsec. 📅 August 22nd: Intro to Web Hacking #1 with Alex Olsen. Start your hacking journey with real-time guidance from Alex. 📅 September 5th: Practical Python for Hackers with Joe Helle Python is essential for security professionals. Get a primer from Joe Helle, aka "the Mayor." We also have a 2-Part Phishing Analysis Deep Dive on the horizon! Dates coming soon. What type of workshops would you like to see? Let us know in the comments ⬇️

July 25, 2024 OSINT 101 - Part 1 🔍Watch the entire OSINT workshop with Heath at the Academy: https://lnkd.in/gc_GDQqT In today's class, everything shown will be hands-on. We will be covering the following topics: Introduction What is OSINT? Overview of the Intelligence Lifecycle Sock Puppets Search Engine OSINT Email Address OSINT Password OSINT Username OSINT Image OSINT Video OSINT You might have issues watching here on LinkedIn, but X and Facebook will have the full video! https://lnkd.in/gGC5itTC Facebook: https://lnkd.in/gWj8jGK5

Ever wondered if you need to know programming to be a hacker? While it's not mandatory, having a solid understanding of programming languages can be incredibly useful for creating scripts, fixing exploits, or reviewing code. Check out our latest newsletter where we delve into strategies for learning any programming language, using JavaScript as an example. Learn about core concepts like variables, data types, operators, and control structures that are key across all languages. Are you ready to go deeper? 👨💻 Join us at TCM Security Academy and explore our courses on Rust, Python, and soon, our new C# mini-course.

👺Today's the last day to save 20% on Certifications! Use SUMMERHAX24 at checkout!* Already have your PNPT voucher but need some extra help while studying for your exam? Rest assured - we’ve got some awesome resources to help you out on your journey. You can use these (3) TryHackMe rooms to supplement your studying: 🔨 Wreath: Dive into real-world scenarios and practice your enumeration and exploitation skills. This beginner-friendly room is excellent for brushing up on your techniques. 🔍 Hololive: Master pivoting and privilege escalation. This room is packed with challenges to test your lateral movement skills. 🔨 Throwback: Go old school with classic hacking techniques and target a Windows Active Directory network. Perfect for a nostalgic yet practical prep session. And if you’re not quite feeling ready for the PNPT, this room helps for anyone preparing to take the PJPT (Practical Junior Penetration Tester). If you find yourself stuck, check out our Discord Community for more help. Remember, the more you practice, the better you get. Happy hacking! *Code can not be combined with other offers and/or discounts. Not valid on exam retake attempts. Ends July 24, 2024 at 11:59pm ET https://lnkd.in/gDrDgUDN

LIVE HackTheBox | Cyber Security | Pentesting | AppSec Join Alex to learn more about web hacking. He takes audience questions on a number of security-related topics, does some live hacking, and shares a little bit about future plans here at TCM Security. We livestream at 12 PM ET every Wednesday, so please subscribe to see the next time we're live!

🚨 𝟐𝟒-𝐇𝐎𝐔𝐑 𝐀𝐋𝐄𝐑𝐓!🚨 You have one more day to take advantage of our summer savings! Use code 𝐒𝐔𝐌𝐌𝐄𝐑𝐇𝐀𝐗𝟐𝟒 to get 20% off certifications and live trainings, and 50% off your first All-Access Membership payment. Get access to top courses like: ⚫Practical Ethical Hacking (PEH): Our most popular course! Learn external and internal network penetration testing, wireless pentesting, and web application penetration testing. Gain the fundamentals for a long-lasting career in cybersecurity. ⚫OSINT: Dive into open source intelligence with skills that go beyond cybersecurity. Create believable sock puppet accounts, perform image OSINT, and more to enhance your investigative abilities. ⚫Practical Bug Bounty: Interested in bug bounties? This course covers advanced evasion techniques and bypassing Web Application Firewalls (WAF) to help you become a more successful bug bounty hunter. Hurry! This offer ends tomorrow at 11:59 PM ET. Academy: https://lnkd.in/ghjPS7_i Certifications: https://lnkd.in/gtZegUtC Live Training: https://lnkd.in/giemMUdq

Are you heading to Hacker Summer Camp this year? So are we! Catch us at the #DEFCON IoT Village and pick up some swag! 😍 In the meantime, don’t miss out on summertime savings: use code SUMMERHAX24 This covers: - 50% off your first payment for an All-Access Membership: https://lnkd.in/ghjPS7_i - 20% off ALL Certifications: https://lnkd.in/gtZegUtC - 20% off Live Training: https://lnkd.in/giemMUdq Exam retakes are excluded from this offer; this code cannot be combined with any other discounts. This will end July 24th at 11:59pm ET, so act quickly. What will you be getting? 🛒🤔

Alex Olsen is going through the best and the worst of HackTheBox machines in today's video. Use HackTheBox at all? You won't want to miss this. https://lnkd.in/dt_YkRxf 💡Gobox: First up is the very well-rated Gobox. Getting into Gobox required chaining different exploits and tools, making each step rewarding. It's clear why this box is highly rated; it’s challenging yet satisfying. 💡RainyDay: At the opposite end of the spectrum, we have RainyDay. Surprisingly, RainyDay, despite its low rating, didn’t seem as bad as expected. It's possible we may revisit this box in a future video or livestream. 💡Final Comparison & Insights: Comparing both machines, it's evident that boxes tagged as CTF-like often get lower ratings due to frustration or unrealistic challenges. Yet, complex attacks are often realistic, just not common. Understanding these trends can help you choose the right machine to test your pentesting abilities. A Word on Machine Matrices: A quick glance at the machine matrices shows how ratings align with perceived difficulty and realism. Use this insight to pick your next challenge carefully. What are your thoughts? Do you have a favorite - or least favorite box on HTB - and why? 👀

Join our Live Web App Testing Training with Alex later this week! Use the code SUMMERHAX24 for a sweet discount. This includes ALL certifications, All-Access Memberships, and Live Trainings. Get it while it's hot! 😏 You have until Wednesday night! https://lnkd.in/giemMUdq

🚨Feeling like your exploit is having a “tech hiccup” moment? 🫠 Just like the recent global IT disruptions, sometimes our own exploits hit a snag—whether it’s a reverse shell that won’t connect, an exploit that fizzles out, or a web app attack that just won’t land. But don’t worry, we’ve got your back! https://lnkd.in/gak_CDXr Whether you're dealing with a reverse shell that won’t connect, an exploit that seems to fizzle out, or a web app attack that just won’t land, we’ve got you covered. Here’s a quick troubleshooting checklist: 💥 Reverse Shell: Double-check your IPs, ports, and firewall rules. Ensure your payload is properly configured. If needed, try alternative shells or reset your environment. 💥 Exploit Issues: Validate your exploit against the target version, check for code quirks, and ensure proper compilation. Look into the target’s configuration and try alternative exploits if needed. 💥 Web App Exploit Fails: Investigate error messages, adjust your payload, and consider the tech stack of the target. Try variations or encoding and think about WAF bypass techniques. Bonus Tips 🟣 Take Breaks: Often, a fresh perspective leads to breakthroughs. Come Back Later: Switch tasks and revisit your attack with new insights. 🟣 Read Error Messages: Sometimes the solution is right there. 🟣 Leverage Google & ChatGPT: They can help troubleshoot code and errors quickly. Ready to tackle your next challenge? Drop your tips and questions in the comments below!