FashionProof
LightNews LightNews
banner
fashionproof.bsky.social
FashionProof
@fashionproof.bsky.social
230 followers 460 following 920 posts
infosec - no one of consequence
https://medium.com/@markmotig
Posts Replies Media Videos
Reposted by FashionProof
threddyrex.com
black friday
cyber monday
giving tuesday
broke on wednesday
December 2, 2025 at 6:34 PM
Reposted by FashionProof
infosec.skyfleet.blue
How to build forward-thinking cybersecurity teams for tomorrow
How to build forward-thinking cybersecurity teams for tomorrow | Microsoft Security Blog
To secure the future, we must future-proof our cybersecurity talent and develop teams that are agile, innovative, and perpetually learning.
www.microsoft.com
December 2, 2025 at 6:45 PM
fashionproof.bsky.social
Favorite N.N.T. today:

I just love the sentance "generator" of reality.
Most models, of course, attempt to be precisely predictive, not just descriptive; I find this infuriating. They are nice tools for illustrating the genesis of Extremistan, but I insist that the "generator" of reality does not appear to obey them closely enough to make them helpful in precise forecasting. At least to judge by anything you find in the current literature on the subject of Extremistan. Once again we face grave calibration problems, so it would be a great idea to avoid the common mistakes made while calibrating a nonlinear process. -Nassim Nicholas Taleb -The Black Swan
December 2, 2025 at 3:40 AM
fashionproof.bsky.social
Pen test tip: Look for accounts, computer names, etc from other pen test companies acronyms/names. Sometimes people or scripts fail to clean up.

#cybersecurity
December 2, 2025 at 2:03 AM
fashionproof.bsky.social
Favorite N.N.T. paragraphs today

I feel "the incompleteness of information" in my bones when trying to root out security issues.

#cybersecurity
As I have said earlier, the world, epistemologically, is literally a different place to a bottom-up empiricist. We don't have the luxury of sitting down to read the equation that governs the universe; we just observe data and make an assumption about what the real process might be, and "calibrate" by adjusting our equation in accordance with additional information. As events present themselves to us, we compare what we see to what we expected to see. It is usually a humbling process, particularly for someone aware of the narrative fallacy, to discover that history runs for-ward, not backward. As much as one thinks that businessmen have big egos, these people are often humbled by reminders of the differences between decision and results, between precise models and reality. What I am talking about is opacity, incompleteness of information, the invisibility of the generator of the world. History does not reveal its mind to us— we need to guess what's inside of it. -Nassim Nicholas Taleb -The Black Swan
December 1, 2025 at 12:42 AM
Reposted by FashionProof
phillipwylie.bsky.social
STÖK: Hacking, Content Creation, and Good Vibes
STÖK: Hacking, Content Creation, and Good Vibes - Phillip Wylie
Summary In this episode of the Phillip Wylie Show, Stök shares his journey from a technical background in infrastructure to becoming a successful bug bounty hunter and content creator. He emphasizes the importance of communication skills in the cybersecurity field, offers tips for aspiring content creators, and discusses the significance of building a personal brand.…
thehackermaker.com
November 30, 2025 at 8:04 PM
fashionproof.bsky.social
I wonder how many companies outbound ip's are affected.

I am clean. The rest of you are suspect :)

www.bleepingcomputer.com/news/securit...
GreyNoise launches free scanner to check if you're part of a botnet
GreyNoise Labs has launched a free tool called GreyNoise IP Check that lets users check if their IP address has been observed in malicious scanning operations, like botnet and residential proxy networ...
www.bleepingcomputer.com
November 30, 2025 at 8:11 PM
fashionproof.bsky.social
Favorite N.N.T. paragraph today.

Unrelated, I will be checking limits of in memory recusive compiling tomorrow. I wonder if it will be some specific number or just crash when it runs out of memory. Or maybe something interesting will happen like zip recursion.

#testthelimits
people who do not get the central argument of this book-you can always produce data "corroborating" that the underlying process is Gaussian by finding periods that do not have rare events, just like you can find an afternoon during which no one killed anyone and use it as "evidence" of honest behavior. I will repeat that, because of the asymmetry with induction, just as it is easier to reject innocence than accept it, it is easier to reject a bell curve than accept it; conversely, it is more difficult to reject a fractal than to accept it. Why? Because a single event can destroy the argument that we face a Gaussian bell curve. -Nassim Nicholas Taleb -The Black Swan
November 30, 2025 at 2:46 AM
Reposted by FashionProof
0xdf.bsky.social
Era from HackTheBox has multiple IDOR vulnerabilities followed by a PHP injection invoking the PHP SSH module to run commands on the host. Then there's a signed Linux binary to negotiate for root.
HTB: Era
Era starts with a custom file upload website full of insecure direct object reference vulnerabilities. I’ll create an account and abuse one IDOR to download a site backup from the admin account. Then I’ll abuse an IDOR like vulnerability to get admin access to the site. The admin panel has a PHP vulnerability where I can get it to use the SSH module to login to the host and run commands, providing a reverse shell. From there, I’ll create my own signed binary to replace one that I can run with sudo to get root.
0xdf.gitlab.io
November 29, 2025 at 3:00 PM
Reposted by FashionProof
paul.bsky.social
Black Friday Sales but for groceries, rent, electricity bills, and healthcare.
November 25, 2025 at 10:47 PM
Reposted by FashionProof
rastamouse.me
This iteration leverages the power of @raphaelmudge.bsky.social's Crystal Palace ecosystem to build custom evasion tradecraft, and apply it to Beacon, BOFs and post-ex DLLs.
November 28, 2025 at 2:35 PM
Reposted by FashionProof
jvagle.me
Surely the ice beneath our feet is thick enough to support our weight, right?
crampell.bsky.social Catherine Rampell @crampell.bsky.social · 5d
Since the launch of ChatGPT in November 2022, AI related stocks have accounted for 75% of S&P 500 returns, 79% of earnings growth, and 90% of capital spending (Capex and R&D) growth. am.jpmorgan.com/content/dam/...
November 27, 2025 at 2:07 PM
fashionproof.bsky.social
It would not be Thanksgiving without this N.N.T. quote.

Do not think like a turkey.
Consider a turkey that is fed every day. Every single feeding will firm up the bird's belief that it is the general rule of life to be fed every day by friendly members of the human race "looking out for its best interests," as a politician would say. On the afternoon of the Wednesday before Thanksgiving, something unexpected will happen to the turkey. It will incur a revision of belief. -Nassim Nicholas Taleb
November 27, 2025 at 2:11 AM
Reposted by FashionProof
infosec.skyfleet.blue
How Malware Authors Are Incorporating LLMs to Evade Detection
How Malware Authors Are Incorporating LLMs to Evade Detection
Cyberattackers are integrating large language models (LLMs) into the malware, running prompts at runtime to evade detection and augment their code on demand.
www.darkreading.com
November 26, 2025 at 7:04 PM
Reposted by FashionProof
infosec.skyfleet.blue
Teaching Claude to Cheat Reward Hacking Coding Tasks Makes Them Behave Maliciously in Other Tasks
Teaching Claude to Cheat Reward Hacking Coding Tasks Makes Them Behave Maliciously in Other Tasks
cybersecuritynews.com
November 26, 2025 at 7:05 PM
Reposted by FashionProof
eljefe.social
Microsoft announced to all its FTEs this same lie that they should buy a different router than tp-link.

When I asked them what they recommended instead?
They said Asus.

For the record: Asus routers have had more reported vulns than tplink in the last decade.

Put that in you pipe and smoke it.
November 26, 2025 at 5:39 PM
fashionproof.bsky.social
Favorite N.N.T. paragraph today.

There are a few people in Cyber I wish could be funded with FU money and let them research whatever they wanted to make the world better.
#cybersecurity
November 26, 2025 at 2:42 AM
Reposted by FashionProof
doublepulsar.com
Nvidia unveiled their new logo today.
November 25, 2025 at 5:17 AM
fashionproof.bsky.social
Favorite N.N.T. paragraph today.
The Geometry of Nature Triangles, squares, circles, and the other geometric concepts that made many of us yawn in the classroom may be beautiful and pure notions, but they seem more present in the minds of architects, design artists, modern art buildings, and schoolteachers than in nature itself. That's fine, except that most of us aren't aware of this. Mountains are not triangles or pyramids; trees are not circles; straight lines are almost never seen any-where. Mother Nature did not attend high school geometry courses or read the books of Euclid of Alexandria. Her geometry is jagged, but with a logic of its own and one that is easy to understand. -Nassim Nicholas Taleb -The Black Swan
November 25, 2025 at 1:09 AM
Reposted by FashionProof
twonks.bsky.social
If you fancy supporting Twonks I am now on Patreon. Link in bio 🙂
January 9, 2025 at 5:25 PM
Reposted by FashionProof
twonks.bsky.social
March 7, 2025 at 1:40 PM
Reposted by FashionProof
twonks.bsky.social
😢
August 1, 2025 at 1:19 PM
Reposted by FashionProof
twonks.bsky.social
Wet floor
August 10, 2025 at 4:07 PM
Reposted by FashionProof
twonks.bsky.social
Gotta get them steps up
September 14, 2025 at 2:22 PM
Reposted by FashionProof
twonks.bsky.social
Vegan menu
October 15, 2025 at 5:21 PM