Enter + ~C

On some ssh client versions, you also need to add "EnableEscapeCommandLine yes" to ~/.ssh/config

Educated guess - backup software generally will have full disk access because it needs it companies want a full backup

No security risk - Just easier for me to copy and paste

@@dopy8418 I have YT memberships open, I don’t accept donations any other way

@@ДмитрийКузнецов-я4д the second number is length. Not start/end.

​@@ippsecoh, thanks a lot. i had the same doubt.

@@Hope-kf1nl I do show speeding up Boolean SQL injection here: m.kzbin.info/www/bejne/o3ebgmR8ndOIbZI, which probably is the same method you are talking about. You’re still likely making 4-6 requests per character, when this can do 32 characters in a single request. For an md5sum, I believe every character would be 4 requests (maybe 3). So you’re talking about making 64 or 128 requests per password hash versus the 2 requests this way. It’s exponentially faster to go with error injection when you can.

@@ippsec Yes, this was what I was talking about. Also, yes, no arguing it. You're correct that the error-based strategy is best here.

@@AUBCodeII id buy everyone HTB vouchers, I don’t like the way offsec has gone in the last couple of years. Laying off a lot of their content team left a bad taste in my mouth

@ippsec fair enough. I didn't know they laid off their staff

@AUBCodeII yup, they got rid of the community team (falconspy/tjnull) ~2 years ago. Then a lot of the content creators (ex: Siren) and such a year ago. To my knowledge a lot of their content is just created by contractors nowadays, which isn’t a recipe for long term success

@@ippsec that sucks :(

​​@@ippsec lol, HTB voucher will be more interesting to be honest 🥰