Welcome, Guest
You have to register before you can post on our site.



Search Forums

(Advanced Search)

Forum Statistics
» Members: 153
» Latest member: Andres-GarciaKex
» Forum threads: 12
» Forum posts: 15

Full Statistics

Online Users
There are currently 128 online users.
» 0 Member(s) | 127 Guest(s)

Latest Threads
YouTube's New Terms of Se...
Forum: Welcome!
Last Post: Malachai
11-10-2019, 04:27 AM
» Replies: 1
» Views: 827
Remember, Remember the 5t...
Forum: Welcome!
Last Post: Threadmaker
11-06-2019, 12:03 AM
» Replies: 0
» Views: 657
BlueKeep II (also calledD...
Forum: Welcome!
Last Post: TheGalaxyNinja
10-13-2019, 10:15 PM
» Replies: 0
» Views: 3,177
Pretty Quiet Right Now
Forum: Welcome!
Last Post: TheGalaxyNinja
09-27-2019, 09:28 PM
» Replies: 2
» Views: 14,577
FAQ about the THS-OS Apol...
Forum: Old Distros
Last Post: Threadmaker
08-20-2019, 08:48 PM
» Replies: 0
» Views: 445
Apollo Distro
Forum: Old Distros
Last Post: Threadmaker
08-20-2019, 08:47 PM
» Replies: 0
» Views: 465
Forum: Old Distros
Last Post: Threadmaker
08-20-2019, 08:47 PM
» Replies: 0
» Views: 471
Forum: Old Distros
Last Post: Threadmaker
08-20-2019, 08:46 PM
» Replies: 0
» Views: 500
Privacy Policy
Forum: Rules and Regulations
Last Post: TheGalaxyNinja
06-19-2019, 02:28 AM
» Replies: 0
» Views: 10,692
Terms and Conditions
Forum: Rules and Regulations
Last Post: TheGalaxyNinja
06-19-2019, 02:27 AM
» Replies: 0
» Views: 4,831

  YouTube's New Terms of Service
Posted by: TheGalaxyNinja - 11-10-2019, 02:51 AM - Forum: Welcome! - Replies (1)

So YouTube is updating their Terms of Service on Dec 10th with a little bit of a twist>

Under "Accounts Suspension and Termination" there is now a clause that says: 

"Terminations by YouTube for Service Changes

YouTube may terminate your access, or your Google account’s access to all or part of the Service if YouTube believes, in its sole discretion, that provision of the Service to you is no longer commercially viable."

In other words... if YouTube decides they can't make money off of you, they can delete your account because of it.

Maybe it's time for a new video sharing service to step up to the plate...

Print this item

  Remember, Remember the 5th of November...
Posted by: Threadmaker - 11-06-2019, 12:03 AM - Forum: Welcome! - No Replies

[Image: ao5zLDg]

Can you find the hidden secret? It's been a while!

Print this item

Shocked BlueKeep II (also calledDejaBlue)
Posted by: TheGalaxyNinja - 10-13-2019, 10:15 PM - Forum: Welcome! - No Replies

Although this is slightly old news (from August), if you aren't paying attention to the cyber-world news, you might have missed this memo.
CVE-2019-1181 and CVE-2019-1182 target the RDS (Remote Desktop Services) of all versions of Windows 10.
Because this flaw can be used to create a worm that can then infect other computers with these security flaws.
Microsoft recommends updating to get rid of the security flaw.
Or... you could just get rid of the Microsoft RDS... or better yet, switch to Linux!
Of course, it does not affect Windows XP, so go ahead and feel safe if you are still using Windows XP!
Well feel as safe as a person in a glass house would feel living next to a rock quarry! XD

Print this item

Star Pretty Quiet Right Now
Posted by: TheGalaxyNinja - 09-14-2019, 10:04 PM - Forum: Welcome! - Replies (2)

Hello everyone!

It's been one crazy hectic year for me... well 2 years really!
I can't believe it's been two years since my life changed forever.
But you know, it's pushed me beyond what I thought I could do, it changed me for the better, and I learned some programming along the way!
I know it will take a while to get stuff posted up here and get the forum and site truly functional, but it will happen!
Don't just sit back and watch... take part! That's what made THS so unique before. Cool 
Hmm... might be changing those emojis soon.

Take care,

Print this item

  FAQ about the THS-OS Apollo Distro
Posted by: Threadmaker - 08-20-2019, 08:48 PM - Forum: Old Distros - No Replies

Q: What is “THS-OS”?
A: THS-OS is the Top-Hat-Sec Edition of Backbox.

Q: What makes the THS-OS different from other pentesting Distros, like Backbox or Backtrack?
A: The THS-OS is a “tricked out” version of Backbox. It contains additional tools that R4V3N has put into the THS-OS that other operating systems don’t have.

Q: What version of Ubuntu does the THS-OS use?
A: It runs the same version as Backbox – Ubuntu 11. This makes it more compatible than Backtrack as Backtrack is running Ubuntu 10. Backtrack has a custom Kernel which causes further compatibility issues. 

Q: Where can I download the THS-OS?
A: See the Apollo Distro Post for the link

Q: How do I login?
A: select "other" and login as: root   The password is: teamths

Q: When I try to install, I get an "Username not valid" error
A: Run the live system. Login as root, open the terminal and type: ubiquity --no-migration-assitant <hit enter>. Then install it like you normally would.
If this does not work, you could have a corrupt version of the THS-OS. The solution to that is to re-download the THS-OS and try to make sure you are not timing out or that your internet is not going down during the download.

Q: I can’t find the Top-Hat-Sec folder on the desktop… help!?
A: You need to log in as “other” root    and put the password as teamths

Q: What is the us3r account?
A: The us3r account is a generic account created because Backbox would not allow us to create a Distro with Just a root account.  People that don’t want to log in as root can log in as us3r. The us3r account does not have the special programs that the root account does, and is more of a “blank slate” you can modify to your purposes.                       

Q: How can I delete the us3r account?
A: Ubuntu: How to Remove a User Account:  From time to time, it becomes necessary to remove a user account from your computer. Removing a user account from your Ubuntu system is a simple task that requires two separate terminal commands.
1. Open a terminal window.
2. First, you’ll need to delete the user account. Input the following command and hit Enter (change to the name of the user account that is to be removed):
sudo userdel (username)
3. Now you’ll want to delete the Home directory for the deleted user account. Input the following command and hit Enter (change to the name of the user account that is to be removed):
sudo rm -r /home// (usermame)

Q: Is the root account fully updated?
A: No. When you first install the THS-OS, you will need to run the updateme.sh script on the desktop (located under the Top-Hat-Sec folder). To do this, you will open the terminal and type in the following: cd Desktop <hit enter>    chmod 755 updateme.sh <hit enter>     ./updateme.sh <hit enter>     The update process can take quite a few minutes, so please be patience. When prompted, type in the letter y <hit enter> and wait for the update process to finish.

Q: Do I need to run the Patch as well?
A: If you would like Cowpatty installed onto the THS-OS, or if you have WepWap1.6, then YES. Otherwise No.  The update should be run 1st before running the Patch!

Q: Where can I download the THS-OS Patch?
A: The directions and site are located here: http://top-hat-sec.com/forum/index.php?topic=680.0   

Q:  Are we allowed to do apt-get dist-upgrade command on the THS-OS?
A: Yes as we did not change the Kernel of Backbox. However, we do not recommend updating Firefox as that will prevent some of the custom programs from running correctly.

Q: Do you have full personal support for your THS-OS?
A: No. We can help out if you have an issue with a specific THS-OS feature, but if it is a problem related to Backbox or Ubuntu we ask that you use the THS forum and the Backbox/Ubuntu forums. Using the search bar on the THS forum can lead to many solved issues with the THS-OS.

Q: How come I can’t change my volume when I click on the speaker?
A: The speaker icon is a part of the Backbox operating system that doesn’t function properly.  You can run a script to make it work in root, but at this time, I do not know what script this would be.
To adjust your sound, go to the terminal and type: alsamixer         
This will bring you to the screen where you can adjust the volume using the arrow keys (over to move to the next bar, up and down to adjust the sound)
UPDATE: Alsamixer Desktop Icon - http://top-hat-sec.com/forum/index.php?t...;topicseen

Q: I have a Broadcom b43 wireless card. How come I can’t connect to the internet?
A:  Backbox/Ubuntu 11 has a driver issue with Broadcom. To fix this, you will need to be connected to the internet either with a cable or an external wireless card.
After you are connected to the internet, open up the terminal and type in the following command:
 apt-get install firmware-b43-installer
Type y and hit enter when prompted.

Q: How come WePpy and WapPy do not work in the THS-OS?
A: It can take 4 days to make our programs compatible with the THS-OS. Because the WepWap program was made compatible, WePpy and WapPy are on the backburner at least until after the SQL injection course is released.

Q: Why won’t my WepWap Program work in the THS-OS?
A: There are a few reasons your WepWap Program may not work.
     1)   You have WepWap1.5 which only works in Backtrack.    Solution: You will need WepWap1.6
     2)   You have not downloaded  and installed the Patch 2.0.  Solution: Download Patch 2.0
     3)   If neither of these work, see FAQ about WepWap (in process and not posted at this time).

Q: How do I run Metasploit on the THS-OS?
A: Go into the menu, services, postgresql and start postgresql. It opens up the console, wait a few seconds, and then it will have postgresql started. From there, create a new user and database. Then open msfconsole and connect.

Q: Why won't my Alfa AWUS036NH work in Linux?
A: Because it is not compatible. However the Alfa AWUS036H  (no "N") should work just fine.

Print this item

  Apollo Distro
Posted by: Threadmaker - 08-20-2019, 08:47 PM - Forum: Old Distros - No Replies

This contains the link to the Apollo Distro. This distro is based off of Backbox from back in the day.
To the best of my knowledge, Apollo doesn't work properly anymore.
I am not including the majority of the old troubleshooting problems at this time (apart from the faq).
Mostly I'm just posting this link because it was the first distro THS ever made.

Apollo Distro

Print this item

Posted by: Threadmaker - 08-20-2019, 08:47 PM - Forum: Old Distros - No Replies

Newest Distro, but still is pretty outdated now

RTLE and md5 link

Print this item

Posted by: Threadmaker - 08-20-2019, 08:46 PM - Forum: Old Distros - No Replies

One of the old distros that was created with the help of THS friends. :-)

THS-OS 32 bit

Print this item

  Privacy Policy
Posted by: TheGalaxyNinja - 06-19-2019, 02:28 AM - Forum: Rules and Regulations - No Replies

Privacy Policy
Privacy Policy for Top-Hat-Sec, LLC (hereafter mentioned as Top-Hat-Sec, LLC, Top Hat Sec, THS, Top-Hat-Sec, LLC, Top Hat Sec, LLC or any variant of said name)
Top Hat Sec collects information from our users at several different points on our website. If you choose to offer us your e-mail address, name, address, phone or comments, we may store this information where we can access it in case of a breach of the terms and conditions.
THS may also use this information to contact you if you purchase an item from our store. For example; if you purchase a t-shirt, we will use your name and address to send the t-shirt to you. We may also call or email you if we need more information before mailing an item.
For example, if you need an item shipped to Africa, and you give us your address, but it is not in an international format, or if you leave your zip code off by accident, we would need to get in touch with you in order to ship your product.
The most used piece of information you provide us with will be your email address, because we often use it to send confirmation emails and links to digital products.  If we send you a link and you are unsure if it is a legitimate link, please contact us and we will respond within 24-48 hours. Generally we will respond much sooner than that.  
THS will not trade, sell, or give away any member’s personal information.
However, we reserve the right to put your information on/in the videos and documents you purchase to protect ourselves. We will not be held liable if you chose to disobey the terms and conditions and put the videos/pdf’s purchased somewhere where others may be able to access your information.
If you provide us with your email, we may use your email to send information about contests (such as ctfs), new videos, new content, newsletters and the like. You may request to opt out of this at any time and we will process the request and stop the information within 2 weeks from the request sent. If we do not respond to the request, please email us at admin@tophatsec.com and we will respond promptly.
Yeah, I love to bake; cookies are yummy! But these types of cookies are pieces of data stored on your, the user’s, hard drive on a computer, tablet, mobile phone or the like, that collects information about you, the user. We may collet this information if you just visit our site, but we for Sure will collect this information if you log into any part of our site. This information can include your ip address. On the forum, your IP address is often linked to your forum name. Only a THS admin should be able to see that information. We realize that you may try to use a proxy or hidden ip address when visiting our site. Not all ip addresses may be allowed on the site because of malicious acts or spamming in the past. If your ip address falls into this category and you feel this to be in error, please contact an admin so we may review your concern.
This web site will often contain links to other sites; we don’t control sites other than our own and our privacy policy only applies to this site and not to outside sites. You are responsible for reading the privacy policy of any linked or out that you may go to.
Breaches / Hacked Site
Because of the nature of this site, it is plausible that it might always be under attack.  Although we do our very best to ensure the safety of your information, there always remains a chance that all or part of our site may end up compromised at some time. Remember the Heartbleed Bug or the Shellshock Bug? If massive companies end up with major bugs, we may end up with a few ourselves. Once we are made aware of, and have verified a breach, we will notify you via the email provided to us. We will ONLY notify you if any relevant information has been compromised. For example, if someone is able to get all of the names of every forum member there is and the number of posts, but they have not been able to get hashes, emails, private pm info, etc, then we may mention the breach in the forum or blog boards, but will not email you.
Bug Bounty
On that note, if you are interested in joining our bug bounty hunter team, please send us an email. We do not authorize Anyone to test any part of our sites without prior approval.
Testing our sites for bugs without first contacting and gaining written approval from TheGalaxyNinja will most likely result in the termination of your membership as well as possible state, federal or international charges. You also will not get any incentives from us.
The bounties are small and only apply to bugs found on the THS website that have not been already found. $20 usd for major bugs reported and anywhere from $1 usd to $10 usd for smaller bugs, depending on the potential of the bugs to be used for malicious means.
But, if you are a good bug catcher, and report the catches without trying to exploit this website, we can throw in the incentive of a letter of reference either typed on nice paper and signed by the Owner/CEO of Top-Hat-Sec, LLC and mailed to you, or a digitalized letter of reference emailed to you.
If you (a member of our bug bounty hunter team) do find a major bug on the THS website that you can cash in to one of the big bug bounty hunter programs, please notify us within 24 hours. That should allow you time to submit your bug to the proper people. THS has no interest in stealing your thunder; we just want to protect our members.
Typos do not count as bugs. For more information, please contact us at admin@tophatsec.com
If there are any significant changes made to our privacy policy, we will announce that these changes have been made via our blog site and/or homepage and/or forum. Any changes to our privacy policy will be posted 30 days prior to these changes taking place. It is your responsibility to review the privacy policy on a regular basis to ensure that you are properly informed. If you disagree with the privacy policy, you can stop using the site.
If you feel that this company is not abiding by its terms and conditions or its privacy policy, feel free to contact Top-Hat-Sec, LLC at admin@tophatsec.com or training@tophatsec.com
Revised 2019 Top Hat Sec, LLC – All rights Reserved

Print this item

  Terms and Conditions
Posted by: TheGalaxyNinja - 06-19-2019, 02:27 AM - Forum: Rules and Regulations - No Replies

Top Hat Sec Terms and Conditions
Top-Hat-Sec, LLC (hereafter mentioned as Top-Hat-Sec, LLC, Top Hat Sec, THS, Top-Hat-Sec, LLC, Top Hat Sec, LLC or any variant of said name) Terms and Conditions
Please note, we do our best when it comes to translating in other languages, however we are not responsible for miscommunications that may happen when any part of our site or its contents are translated into a language other than American English. If you have a question or concern about what you are reading (in American English or otherwise), please feel free to contact us with the question or concern.
Summary: These are the terms and conditions for Top Hat Sec, not to be confused with the Privacy Policy (https://www.tophatsec.com/store/privacy-policy.html). This is what is termed as “covering our arse.” The entire thing could probably be summed up in two sentences “Don’t do anything illegal or stupid.” and “Take responsibility for your own actions.” But that might be considered “offensive” or “unclear” to someone…
So here you go, just to make it clear…
            By accessing and posting on the forum, you accept and agree to be bound by rules of the forum. In addition, when using the forum, you shall be subject to any posted guidelines or rules applicable to such services. Any participation on the forum will constitute acceptance of this agreement. If you do not agree to abide by the above, do not use this service.
            By accessing any part of this website, and/or watching/reading/downloading any or part of course/module videos, digital content and pdfs, you accept and agree to be bound by the terms and provision of this agreement. In addition, when using any of the above mentioned content, you shall be subject to any posted guidelines or rules applicable to the laws. Any participation on the forum, or any participation in any page of the Top Hat Sec website, or any downloading or watching or listening to or reading content will constitute acceptance of this agreement. If you do not agree to abide by the above, do not use THS.
Please refer to our Privacy Policy here if you have any questions or concerns about how we handle your privacy.
This site and its components are offered for informational and training purposes only; while we do try to ensure the information is accurate, technology will always continue to advance, which sometimes renders the contents of the THS site obsolete; this is the nature of the technology world. Furthermore, while something may be permissible in one country, province or state, Top-Hat-Sec, LLC is based in Virginia, in the United States of America, and therefore subject to the ever changing laws in this state. Each state, province and country vary in rules and we advise you to familiarize yourself not only with the laws of Virginia and the USA, but the laws in your own country and state. Top Hat Sec shall not be responsible or liable for misuse of information provided nor shall THS or its parties be responsible if you inadvertently or advertently break any form of law using information found on or in any part of THS.  This site shall not be responsible or liable for the accuracy, usefulness or availability of any information transmitted or made available via the site, and shall not be responsible or liable for any error or omissions in that information either. Some people consider hacking a controversial subject.  If you are one of those people, and feel offended by our website, please do not agree to the terms and conditions. Top Hat Sec strives to only be involved in Ethical or White Hat hacking, but we do not control the people who come to our site or participate in our training. Please see the revoking section for more information.
Furthermore, this web site most likely contains links to other sites; we do not guarantee any such links are safe; it is your responsibility to verify the links and/or sites before clicking on them. For example, if someone is talking about the latest malware and gives a link… it’s a safe bet that you should not click on that link unless you are in a sandbox trying to test the malware out or devise a way to detect it. If you have a concern about a link that another member put up please contact an admin so we can review your concern.
The Site and its original and current content, features, and functionality are owned by Top-Hat-Sec, LLC (Kimberly Drew aka GalaxyNinja), and are protected by international copyright, trademark, patent, trade secret, and/or other intellectual property or proprietary rights laws.
Top Hat Sec does not currently use advertisers, as we rely on donations and our video series to fund the various costs involved in running a business (such as personal property taxes, filing fees, hosting services, etc.) however, if in the future we do advertise, we will make sure to only endorse products that fit THS values and will do our best to ensure the advertisers are aware and abide by the THS privacy policy
 The Top Hat Sec Store accepts both Pay Pal and credit cards. To pay with bitcoins, please contact us at admin@tophatsec.com, Alternatively, you can use the number below, however, the store will not process courses or items with this number; you will still have to contact us.
For all videos or items purchased, once you receive the username and password, or the downloadable link, your items will no longer be refundable. If you believe you purchased an item in error, please contact us at admin@tophatsec.com
If you purchased a shippable item, your order can be cancelled up to the time we email the shipping information. Once the item is in transit, the order can no longer be cancelled or returned.
If you do need to return an item, you will receive a full reimbursement, minus shipping costs and restocking fees.
For items shipped inside of the United States of America, we will do our best to get the items purchased by you in a timely manner. Some delays may happen if a natural disaster happens and such delays are out of our hands. Some examples of natural disasters are blizzards, tornados, hurricanes, flooding, wildfires and the like. 
 For items shipped outside of the United States of America, there may be delays in your order. Once the postal service has transferred an item purchased/package shipped to the customs border of wherever your package is going, Top Hat Sec can no longer accept responsibility for when and if your item will arrive safely. THS has no control over third party shippers, nor do we have control over customs or postal services outside of the USA.
We will always try to ship your item the most responsible way possible, unless you indicate otherwise during ordering.
Please make sure you are aware of what can and can not be shipped to your country as Top Hat Sec will not assume responsibility if an item is denied at customs.
We have yet to have that happen, but there is always a first time!
At certain times, items such as shirts may be shipped by a third party vendor, such as a long time THS member in good standing who can order shirts cheaper than THS could. If this happens, it will be notated in the store. Purchasing such an item will act as an agreement that your name, shipping address, and possibly phone number and/or email,  may be given to that individual so they may ship your item.
If you have any questions or concerns about your order, please contact us at admin@tophatsec.com so we may address that concern.
The items you purchase are yours alone. With the exception of gear (shirts, lanyards, pens etc), your purchase will be watermarked or digitally injected with your personal information to help protect us against digital piracy. If you do not agree to this, do not purchase the items!
The exceptions to this are immediate family members of the purchaser. You are allowed to share videos and pdfs with your immediate family members, however if a course comes with a certificate of completion or a certification after passing a test, the family member will need to purchase the test / certification to receive credit for the course. If you have any questions about this, please feel free to email us at the email address above.
If you have registered on the forum or another part of the site, we may revoke, suspend and or terminate your account and access thereof without notice, which may result in any information in your account to be destroyed. If we terminate your account, we may not be able to get your information back. An example of something that might cause termination would be if you tried to commit fraud, pentest any part of our site without permission, and/or deliberately input misinformation into a THS Wiki. These are only a few examples, and are not all inclusive.
It is on the burden of the revoked, suspended or terminated member/guest to prove your innocence in order to be reinstated. Top Hat Sec reserves the right to use our best judgement as to whether or not to reinstate you. Regardless of whether or not you have been terminated, suspended or the like, you still agree to hold Top-Hat-Sec, LLC blameless and uphold all of the rules and provisions stated herein.
Contests and Promotions:
            From time to time, THS may host various contests (such as a ctf or a knock box) or promotions (such as a spring sale).
 Participation in these surveys, contests or promotions is completely voluntary so the user has the choice whether to participate and disclose the information needed to participate in such events. Information requested may include contact information (such as name, shipping address, email, and/or phone number) and demographic information (such as zip code, age level, male, female, or other). Contact information will be used to notify the winners and award prizes. Survey information will be used for purposes of monitoring or improving the use and satisfaction of this site (including future contests).
Top Hat Sec, LLC reserves the right to change these terms and conditions from time to time as we see fit. Your continued use of the site and/or forum will signify acceptance on your part of any adjustment to these terms and conditions. If there are any significant changes made to the terms and conditions, we will announce that these changes have been made via our blog site and/or homepage and/or forum. Any significant changes to our terms and conditions will be posted 30 days prior to these changes taking place. You are therefore advised to re-read the terms and conditions on a regular basis. For changes relating to our privacy policy, please see the privacy policy document (link here).
If you feel that this company is not abiding by its terms and conditions or its privacy policy, contact Top-Hat-Sec, LLC at admin@tophatsec.com or training@tophatsec.com

Print this item