d3fp4r4m
@defparam.bsky.social
Security Researcher
@defparam@infosec.exchange
@defparam@infosec.exchange
lmao, could you imagine the NSA rm-rf-ing *privilege* from all systems without context
3. The memo acknowledges that the list includes many terms that are used by the NSA in contexts that have nothing to do with DEI.
For example, the term "privilege" is used by the NSA in the context of "privilege escalation," which is a counterintelligence technique
For example, the term "privilege" is used by the NSA in the context of "privilege escalation," which is a counterintelligence technique
The NSA's "Big Delete"
Today, the National Security Agency (NSA) is planning a "Big Delete" of websites and internal network content that contain any of 27 banned words, including "privilege," "bias," and "inclusion." The "...
popular.info
February 10, 2025 at 7:49 PM
lmao, could you imagine the NSA rm-rf-ing *privilege* from all systems without context
Reposted by d3fp4r4m
There were all kinds of failed theories about the Internet magically defeating authoritarian censorship regimes, which the PRC has readily proven wrong, but staying competitive in the AI space (especially in English) while also controlling access to information might actually be even harder.
January 27, 2025 at 5:03 AM
There were all kinds of failed theories about the Internet magically defeating authoritarian censorship regimes, which the PRC has readily proven wrong, but staying competitive in the AI space (especially in English) while also controlling access to information might actually be even harder.
Reposted by d3fp4r4m
happy new year 🎉
to continue the tradition, here is some of my favorite firmware & embedded security research of 2024:
Defeating the new Raspberry Pi's RP2350 Security Features [1]
Reversing and Hacking Firmware of an in-orbit Satellite to Re-establish Lost Communication [2]
to continue the tradition, here is some of my favorite firmware & embedded security research of 2024:
Defeating the new Raspberry Pi's RP2350 Security Features [1]
Reversing and Hacking Firmware of an in-orbit Satellite to Re-establish Lost Communication [2]
January 1, 2025 at 12:13 PM
happy new year 🎉
to continue the tradition, here is some of my favorite firmware & embedded security research of 2024:
Defeating the new Raspberry Pi's RP2350 Security Features [1]
Reversing and Hacking Firmware of an in-orbit Satellite to Re-establish Lost Communication [2]
to continue the tradition, here is some of my favorite firmware & embedded security research of 2024:
Defeating the new Raspberry Pi's RP2350 Security Features [1]
Reversing and Hacking Firmware of an in-orbit Satellite to Re-establish Lost Communication [2]
Reposted by d3fp4r4m
All videos from The 38th Chaos Communication Congress (38C3) 2024:
media.ccc.de/b/congress/2...
#cybersecurity #informationsecurity #hacking #exploitation #iOS #android #apple #exploitation #reverseengineering #vulnerability
media.ccc.de/b/congress/2...
#cybersecurity #informationsecurity #hacking #exploitation #iOS #android #apple #exploitation #reverseengineering #vulnerability
December 31, 2024 at 5:42 PM
All videos from The 38th Chaos Communication Congress (38C3) 2024:
media.ccc.de/b/congress/2...
#cybersecurity #informationsecurity #hacking #exploitation #iOS #android #apple #exploitation #reverseengineering #vulnerability
media.ccc.de/b/congress/2...
#cybersecurity #informationsecurity #hacking #exploitation #iOS #android #apple #exploitation #reverseengineering #vulnerability
Reposted by d3fp4r4m
It's truly amazing we've reached the level of cybersecurity where China has hacked so many US telecom companies that the US government is now recommending the general public uses end-to-end encrypted messaging (something they spent the last 10+ years trying to ban "because terrorism").
December 19, 2024 at 12:04 AM
It's truly amazing we've reached the level of cybersecurity where China has hacked so many US telecom companies that the US government is now recommending the general public uses end-to-end encrypted messaging (something they spent the last 10+ years trying to ban "because terrorism").
Reposted by d3fp4r4m
This was my tenth(!) year building 25 days of puzzles for #AdventOfCode. You can solve them all for free! Most people write code to solve them, but you can solve them however you like. I hope they help people become better programmers. 🌟
The first puzzle comes out in two hours: adventofcode.com
The first puzzle comes out in two hours: adventofcode.com
Advent of Code 2024
adventofcode.com
December 1, 2024 at 2:57 AM
This was my tenth(!) year building 25 days of puzzles for #AdventOfCode. You can solve them all for free! Most people write code to solve them, but you can solve them however you like. I hope they help people become better programmers. 🌟
The first puzzle comes out in two hours: adventofcode.com
The first puzzle comes out in two hours: adventofcode.com
Reposted by d3fp4r4m
Advent of Code is a great way to get your cranial juices flowing... Ok, that sounds gross, sorry.
I love it as a vehicle to play with a new programming language or two, or dust the cobwebs off an old one. I solved the first day's challenge with PHP!
I love it as a vehicle to play with a new programming language or two, or dust the cobwebs off an old one. I solved the first day's challenge with PHP!
This was my tenth(!) year building 25 days of puzzles for #AdventOfCode. You can solve them all for free! Most people write code to solve them, but you can solve them however you like. I hope they help people become better programmers. 🌟
The first puzzle comes out in two hours: adventofcode.com
The first puzzle comes out in two hours: adventofcode.com
Advent of Code 2024
adventofcode.com
December 1, 2024 at 12:35 PM
Advent of Code is a great way to get your cranial juices flowing... Ok, that sounds gross, sorry.
I love it as a vehicle to play with a new programming language or two, or dust the cobwebs off an old one. I solved the first day's challenge with PHP!
I love it as a vehicle to play with a new programming language or two, or dust the cobwebs off an old one. I solved the first day's challenge with PHP!
I made the jump to kubuntu 24.04 as my host OS. It's the year of linux on the desktop for me. My windows workflows have been placed in a VM where they belong.
November 25, 2024 at 2:52 AM
I made the jump to kubuntu 24.04 as my host OS. It's the year of linux on the desktop for me. My windows workflows have been placed in a VM where they belong.
Reposted by d3fp4r4m
How does the new iOS inactivity reboot work? What does it protect from?
I reverse engineered the kernel extension and the secure enclave processor, where this feature is implemented.
naehrdine.blogspot.com/2024/11/reve...
I reverse engineered the kernel extension and the secure enclave processor, where this feature is implemented.
naehrdine.blogspot.com/2024/11/reve...
Reverse Engineering iOS 18 Inactivity Reboot
Wireless and firmware hacking, PhD life, Technology
naehrdine.blogspot.com
November 17, 2024 at 9:42 PM
How does the new iOS inactivity reboot work? What does it protect from?
I reverse engineered the kernel extension and the secure enclave processor, where this feature is implemented.
naehrdine.blogspot.com/2024/11/reve...
I reverse engineered the kernel extension and the secure enclave processor, where this feature is implemented.
naehrdine.blogspot.com/2024/11/reve...
Reposted by d3fp4r4m
I'm sure you're already aware of this resource, but in case others aren't, Marco Ivaldi released some nice weggli rules and wrote a blog showing some vulnerabilities he found with them.
github.com/0xdea/weggli...
security.humanativaspa.it/a-collection...
github.com/0xdea/weggli...
security.humanativaspa.it/a-collection...
A collection of weggli patterns for C/C++ vulnerability research - hn security
“No one cares about the old […]
security.humanativaspa.it
November 13, 2024 at 5:18 AM
I'm sure you're already aware of this resource, but in case others aren't, Marco Ivaldi released some nice weggli rules and wrote a blog showing some vulnerabilities he found with them.
github.com/0xdea/weggli...
security.humanativaspa.it/a-collection...
github.com/0xdea/weggli...
security.humanativaspa.it/a-collection...
Reposted by d3fp4r4m
Bluehat talks are up www.youtube.com/playlist?lis...
November 11, 2024 at 8:24 PM
Bluehat talks are up www.youtube.com/playlist?lis...
Jason Geffner on scaling DAST
youtu.be/kfuOzDwv874
youtu.be/kfuOzDwv874
BlueHat 2024: S10: How Microsoft is Scaling DAST
YouTube video by Microsoft Security Response Center (MSRC)
youtu.be
November 12, 2024 at 2:44 AM
Jason Geffner on scaling DAST
youtu.be/kfuOzDwv874
youtu.be/kfuOzDwv874
I'm here! thanks for the invite @wblummis.bsky.social :)
August 19, 2023 at 3:11 AM
I'm here! thanks for the invite @wblummis.bsky.social :)