Having trouble choosing specialty.

[di0x]

Hi there,


I am having a little trouble on choosing my specialty with offensive computer security.
Previously I've been doing a LOT of web based hacking from my early HBH days and pretty much remember all of it and I am fairly good at PHP.


Now I want to take it to the next level and might even want to enroll in my nations cyber defense department within the military, but I don't know what to learn beforehand.


I have my whole life been deeply fascinated of anything secret and even more of hackers who work for the military, so I need to find something that I could specialize in, in order to beat other applicants.


Any suggestions and / or links would be greatly appreciated,
di0x

[cyberdrifter]

Your first post is supposed to be an introduction.

Hi there,


I am having a little trouble on choosing my specialty with offensive computer security.
Previously I've been doing a LOT of web based hacking from my early HBH days and pretty much remember all of it and I am fairly good at PHP.


Now I want to take it to the next level and might even want to enroll in my nations cyber defense department within the military, but I don't know what to learn beforehand.


I have my whole life been deeply fascinated of anything secret and even more of hackers who work for the military, so I need to find something that I could specialize in, in order to beat other applicants.


Any suggestions and / or links would be greatly appreciated,
di0x

[Polyphony]

di0x: I doubt you'll find many people who have anything to share about their journey through "cyber defense dept" military school; although if anybody does and is willing to share, please do.

Since you're already familiar with web-based vulns, the next logical step would be to familiarize yourself with "hardening".  I'd look into hardening things like hypothetical protocols, your kernel, os, local networks, and webapps too if you haven't already.  These things are all very important and once you understand the details of how these security measures are mis-configured, or just lay unused, the closer you can get to becoming a "defense" focused guy.

If you want to be in an offensive position, learn the same things you have to do for defense, and then study and document clever ways to evade these defenses.  Whether you're trying to crack some "trial version" of a piece of software or you're studying the strengths and weaknesses of encryption algorithms the devil is going to be in the nitty gritty details.

Anyways good luck and cyberdrifter is correct, you are technically supposed to post in the members intro first.  Tell us what kinds of programming languages you know, what aspects of security you're interested, etc.  Writing an intro isn't hard and we won't shun you away from the place if you goof up on it. 

[HTH]

Actually guys, and I never thought Id be defending a newfag, there's no Rule (https://evilzone.org/news-and-announcements/the-rules-1987/) that says they have to make an introduction, it's just considered well, a better way to get into the community. If they wanna jump in and just start making topics, as long as they follow the rules, and don't post absolute drivel in the wrong sections... that's fine lol.
In fact, though I forget where in the stickies it is, it says "Only make an intro if you plan to stay".

In the future CyberDrifter (and anyone else, this isnt just him lol Ive just seen a few posts like this from him) if you believe a person is breaking a rule; simply report them, don't quote them and only add that you think they dun goofed :p

Tl;Dr: Intro posts aren't required, plz just report the post if you think people are breaking rules.