Reposted by Sp00ky
Also cool is, that Wireshark directly allows you to start an application with this environment variable set. So you can launch a browser from within Wireshark and directly decrypt and analyze the TLS traffic. 😃👌
December 24, 2024 at 11:06 AM
Also cool is, that Wireshark directly allows you to start an application with this environment variable set. So you can launch a browser from within Wireshark and directly decrypt and analyze the TLS traffic. 😃👌
This dude's villain origin story started the moment his parents wrote that down on the birth certificate. You can't name a guy Semen Cucksov and not expect him to pull some shit like this 😒 😑
Semen Kuksov, who acquired a Maltese passport in 2022 together with his father, has been linked to a network allegedly used to support “serious and organised crime”, ranging from Russian ransomware attacks to drug dealing in the UK.
Russian man who became Maltese citizen ran ‘bank for criminals across the world’
Semen Kuksov acquired a Maltese passport in 2022 together with his father
timesofmalta.com
December 16, 2024 at 7:56 AM
This dude's villain origin story started the moment his parents wrote that down on the birth certificate. You can't name a guy Semen Cucksov and not expect him to pull some shit like this 😒 😑
Reposted by Sp00ky
It's time for everybody's favorite: unsolicited advice!
In which I discuss the reality of the cybersecurity jobs market, and what you really should be doing to improve your chances.
taggart-tech.com/202...
In which I discuss the reality of the cybersecurity jobs market, and what you really should be doing to improve your chances.
taggart-tech.com/202...
Your 2025 Cybersecurity Jobs Guide
My advice for job hunting to actually get hired, not chase ghost jobs.
taggart-tech.com
December 12, 2024 at 2:56 PM
It's time for everybody's favorite: unsolicited advice!
In which I discuss the reality of the cybersecurity jobs market, and what you really should be doing to improve your chances.
taggart-tech.com/202...
In which I discuss the reality of the cybersecurity jobs market, and what you really should be doing to improve your chances.
taggart-tech.com/202...
You could fucking stand on my lap on the tube and I wouldn't make eye contact with you
December 7, 2024 at 6:39 PM
You could fucking stand on my lap on the tube and I wouldn't make eye contact with you
Reposted by Sp00ky
Soo... A little bit of awareness is probably a good idea :p
We can delete MDI sensors from the Defender portal and do so in bulk via the internal API
It might be a good idea to set up a detection for this:
CloudAppEvents
| where ActionType == "SensorDeleted"
We can delete MDI sensors from the Defender portal and do so in bulk via the internal API
It might be a good idea to set up a detection for this:
CloudAppEvents
| where ActionType == "SensorDeleted"
December 7, 2024 at 12:05 AM
Soo... A little bit of awareness is probably a good idea :p
We can delete MDI sensors from the Defender portal and do so in bulk via the internal API
It might be a good idea to set up a detection for this:
CloudAppEvents
| where ActionType == "SensorDeleted"
We can delete MDI sensors from the Defender portal and do so in bulk via the internal API
It might be a good idea to set up a detection for this:
CloudAppEvents
| where ActionType == "SensorDeleted"
idk why the DPRK bothers with all the other stuff when the golden goose of running the world's most successful IT bootcamps is right under their noses.
November 23, 2024 at 10:03 AM
idk why the DPRK bothers with all the other stuff when the golden goose of running the world's most successful IT bootcamps is right under their noses.
New geocache just dropped
Here Are the Secret Locations of ShotSpotter Gunfire Sensors
The locations of microphones used to detect gunshots have been kept hidden from police and the public. A WIRED analysis of leaked coordinates confirms arguments critics have made against the technolog...
www.wired.com
February 23, 2024 at 8:06 AM
New geocache just dropped
Reposted by Sp00ky
Great story. Github repository of Chinese firm iSoon reveals hacking ops its done for Chinese gov - "lists targets...summaries of...data amounts extracted and details on whether the hackers [got] full or partial control...spreadsheet showed that the firm had...459GB of road-mapping data from Taiwan"
Leaked files from Chinese firm show vast international hacking effort
The trove shows how Chinese security services promote rivalry between private hacking companies, spurring them to target foreign governments and institutions.
www.washingtonpost.com
February 22, 2024 at 3:29 AM
Great story. Github repository of Chinese firm iSoon reveals hacking ops its done for Chinese gov - "lists targets...summaries of...data amounts extracted and details on whether the hackers [got] full or partial control...spreadsheet showed that the firm had...459GB of road-mapping data from Taiwan"
Got an alert today about a weird banking .exe a user had downloaded. Boss recognized it and sent me Wladimir Palant's blog. I thought this was an old article from the ~90s and this was some niche legacy software until I got to the end and saw the disclosures from early 2023!
South Korea’s online security dead end
Websites in South Korea often require installation of “security applications.” Not only do these mandatory applications not help security, way too often they introduce issues.
palant.info
February 20, 2024 at 7:47 PM
Got an alert today about a weird banking .exe a user had downloaded. Boss recognized it and sent me Wladimir Palant's blog. I thought this was an old article from the ~90s and this was some niche legacy software until I got to the end and saw the disclosures from early 2023!
The Rhysida ransomware decryption paper is really well written and easy to follow. Great breakdown of the weakness in the encryption techniques used and the decryption strategy. Recommend giving it a read if you're interested in malware arxiv.org/abs/2402.06440
February 16, 2024 at 1:00 PM
The Rhysida ransomware decryption paper is really well written and easy to follow. Great breakdown of the weakness in the encryption techniques used and the decryption strategy. Recommend giving it a read if you're interested in malware arxiv.org/abs/2402.06440
A few infosec zines I like:
- Prompt Zine (promptzine.com(
- VXUG Black Mass(vx-underground.org/Papers/Other...)
- Phrack (phrack.org)
- International Journal of PoC||GTFO (www.alchemistowl.org/pocorgtfo)
- Paged Out! (pagedout.institute)
Any suggestions to add to the list?
- Prompt Zine (promptzine.com(
- VXUG Black Mass(vx-underground.org/Papers/Other...)
- Phrack (phrack.org)
- International Journal of PoC||GTFO (www.alchemistowl.org/pocorgtfo)
- Paged Out! (pagedout.institute)
Any suggestions to add to the list?
February 14, 2024 at 9:08 AM
A few infosec zines I like:
- Prompt Zine (promptzine.com(
- VXUG Black Mass(vx-underground.org/Papers/Other...)
- Phrack (phrack.org)
- International Journal of PoC||GTFO (www.alchemistowl.org/pocorgtfo)
- Paged Out! (pagedout.institute)
Any suggestions to add to the list?
- Prompt Zine (promptzine.com(
- VXUG Black Mass(vx-underground.org/Papers/Other...)
- Phrack (phrack.org)
- International Journal of PoC||GTFO (www.alchemistowl.org/pocorgtfo)
- Paged Out! (pagedout.institute)
Any suggestions to add to the list?
Posted this on my blog ages ago, was putting together a list of resources for learning/practicing malware analysis. Anyone have recommendations to add? wwright.tech/posts/malwar...
Malware Analysis Resources and Reading List
This is a list of the main resources that I’ve been using to learn about malware and malware analysis.
wwright.tech
February 11, 2024 at 6:11 PM
Posted this on my blog ages ago, was putting together a list of resources for learning/practicing malware analysis. Anyone have recommendations to add? wwright.tech/posts/malwar...
vxug is the only reason I still check twitter
February 9, 2024 at 9:45 AM
vxug is the only reason I still check twitter
New to bluesky, any recommendations for accounts to follow in the infosec space?
February 9, 2024 at 9:44 AM
New to bluesky, any recommendations for accounts to follow in the infosec space?