fsebugoutzone.org:9999

       Post AcDOqdZC7iBR1WMTwG by vpz@infosec.exchange
 (DIR) More posts by vpz@infosec.exchange
 (DIR) Post #AcB2RuJe7uNuQHyJwu by mttaggart@infosec.town
       2023-11-25T21:11:52.985Z
       
       0 likes, 2 repeats
       
       I&#39;m often asked about note-taking strategies—especially with regard to notes while undertaking challenges like #HackTheBox or #TryHackMe &quot;rootme&quot; machines.Here&#39;s the thing: taking notes during the box is nowhere near as important as what you do afterwards.In order to demonstrate (to yourself) that you understand what&#39;s happening, you need to explain in writing or speech how the box was rooted. If at any point you find there&#39;s a part you can&#39;t explain, then you need to go back and research that part of it.That explanation not only demonstrates that you&#39;ve internalized the concepts, but the very act of creating the explanation (&quot;telling the story&quot; of the box) is what you will actually remember later. Our brains are wired to remember narratives, and so creating a narrative of the box essentially converts the information into a file format your brain can easily recall. Then later, when you need to remember this information, you will be able to remember the story you told, not just the raw experiences.
       
 (DIR) Post #AcB9FT2gP1xo2W3KjY by johntimaeus@sysad.ninja
       2023-11-25T22:00:20Z
       
       1 likes, 0 repeats
       
       @mttaggart One thing I&#39;ve recommended to students is when they&#39;re doing practical exercises, turn on a recorder and dictate notes to yourself. Doesn&#39;t work in a classroom environment, but if they&#39;re doing it from home it works well. They get a record of what they did, how/if it worked, what they did on blind faith without understanding, etc. But it doesn&#39;t break flow &amp; concentration the way stopping to take notes does.
       
 (DIR) Post #AcBTi1QAAvCPr3vdgm by mttaggart@infosec.town
       2023-11-26T02:17:19.897Z
       
       0 likes, 0 repeats
       
       @johntimaeus@sysad.ninja Honestly, streaming fills this niche for me. Learning in public is valuable for all involved!
       
 (DIR) Post #AcBXbk8ztfTuLoA39M by johntimaeus@sysad.ninja
       2023-11-26T02:56:48Z
       
       1 likes, 0 repeats
       
       @mttaggart Last gig I had the motto was &#39;Qui dicet, docet.&#39; He who teaches, learns.Everything I know is because my students asked.
       
 (DIR) Post #AcDOqdZC7iBR1WMTwG by vpz@infosec.exchange
       2023-11-27T00:31:06Z
       
       1 likes, 0 repeats
       
       @mttaggart Writing up how you rooted systems as documentation so that another technical person could recreate the thought process and techniques is also good practice in report writing. I agree that it helps one cement the concepts, but practicing writing is important in it&#39;s own right. Reports are the most common type of deliverable for penetration testing and other cybersecurity roles, and in my experience a serious weak point for many folks seeking these roles.