May 7, 2023

TSD #040: Set imposter syndrome MAX

3 mins

Hello friend 👋

I have had the strangest week. Talk about imposter syndrome. I got invited to join this little group. I can't say much about it, but the people that are in the group are absolute rockstars in their field. And then there's little old me walking in like a noob.

Imposter syndrome is something people in general seem to have to deal with. I know plenty of people have reached out to me personally about it. It's one of those things that makes you human. You take a course and then you meet someone else who's a million years younger than you and they've taken even more courses than you have.

It doesn't really go away in my experience. But you just have to remember: we're all on the same team and we all love to learn new things. If you meet someone who you think is more impressive than you...ask them for knowledge bombs. I promise you...there is something you'll be ace at that they aren't.

This week's cyber news:

288 arrests in Operation SpecTor

Law enforcement took down the "Monopoly Market" dark web marketplace and detained 288 people who were involved in buying or selling drugs on the dark web. They have also confiscated more than 50.8 million EUR in cash and virtual currencies, 850 kg of drugs, and 117 firearms. Among the drugs seized were 258 kg of amphetamines, 43 kg of cocaine, 43 kg of MDMA, and over 10 kg of LSD and ecstasy pills! What a bust! Read more.

Ex-Uber security boss given three-year probation

Sullivan tried to cover up a 2016 breach after hackers stole the data of 57 million customers and 600,000 Uber drivers. Sullivan paid the two hackers $100,000 and made them sign non-disclosure agreements but did not inform the FTC. He justified the payments by calling them a bug bounty. Prosecutors said Sullivan "took deliberate steps to conceal, deflect, and mislead the Federal Trade Commission about the breach."Read more.

Fun Things

🕷️ Videos in production

I'm working on 3 videos at the moment. One on the OSCP in 2023, another on my journey to YouTube monetisation and one on my office setup (some of you asked for this...so you're getting it). If you're thinking of taking the OSCP or starting a YouTube channel, you might want to head to my channel and subscribe. I hope it's useful for you!

👾 Cool Tools
PhoneSploit

I don't have any Android devices but if any of you try this one out I'd love to hear about your experience with it! PhoneSploit is an all-in-one hacking tool written in Python to remotely exploit Android devices using ADB and Metasploit. It can automatically create, install, and run payloads on the target device. Check it out on GitHub.

hardCIDR

Another great tool from the legendary TrustedSec. This one is useful for red team engagements. A Bash script to discover the netblocks or ranges, (in CIDR notation) owned by the target organisation during the intelligence gathering phase of engagements. Check it out on GitHub.

‍

See you next week,

Gary

Say hi 👋 on Twitter or LinkedIn

☎️ Book a 1:1 call with me

‍

👋 Ways I can help you

  1. ​Sponsor this newsletter - get in front of 1,500+ infosec readers.
  2. Get daily cyber news - LinkedIn, Twitter, or Telegram.
  3. ​Cyber Career Course - the fastest way to a career in cybersecurity.
  4. ​Take a workshop - learn essential skills to create content.
  5. Have me speak at your event.