meik
@meikk.bsky.social
Niet praten, maar doen.
IT (in)security, motorcycles and parrots.
Reading your email since 2000.
moulinette.org
IT (in)security, motorcycles and parrots.
Reading your email since 2000.
moulinette.org
Reposted by meik
Cloudflare is down which means that downdetector - the service people use to check if things are down - is also down.
Funny internet we are having now.
Funny internet we are having now.
November 18, 2025 at 11:54 AM
Cloudflare is down which means that downdetector - the service people use to check if things are down - is also down.
Funny internet we are having now.
Funny internet we are having now.
Reposted by meik
The deep problems with cybersecurity degree programs are significant and a whole other discussion. Cyber degrees usually fail to teach good foundations in computers. They become obsolete too fast. We know that and orgs are rapidly shifting to prefer CS, CE, and NE majors for juniors.
October 31, 2025 at 9:04 PM
The deep problems with cybersecurity degree programs are significant and a whole other discussion. Cyber degrees usually fail to teach good foundations in computers. They become obsolete too fast. We know that and orgs are rapidly shifting to prefer CS, CE, and NE majors for juniors.
Reposted by meik
Has there ever been a non-anime character intro as badass as that for Hugo Stiglitz???
www.youtube.com/watch?v=p2MW...
www.youtube.com/watch?v=p2MW...
Hugo Stiglitz Introduction
YouTube video by Quentin Tarantino Fan Club
www.youtube.com
October 30, 2025 at 7:26 PM
Has there ever been a non-anime character intro as badass as that for Hugo Stiglitz???
www.youtube.com/watch?v=p2MW...
www.youtube.com/watch?v=p2MW...
Reposted by meik
I testified to Congress that I believe the PRC operations prepositioning for disruptive effects in the US make it a bad idea to use TP-Link routers in millions of American homes. New reporting- the government appears to have reached the same conclusion!
www.washingtonpost.com/technology/2...
www.washingtonpost.com/technology/2...
U.S. agencies back banning popular home WiFi device, citing national security risk
The Commerce Department has proposed barring sales of TP-Link products, citing a national security risk from its China ties, people familiar with the matter said.
www.washingtonpost.com
October 30, 2025 at 8:04 PM
I testified to Congress that I believe the PRC operations prepositioning for disruptive effects in the US make it a bad idea to use TP-Link routers in millions of American homes. New reporting- the government appears to have reached the same conclusion!
www.washingtonpost.com/technology/2...
www.washingtonpost.com/technology/2...
Reposted by meik
In the early 2000s we put a very simple chatbot based on Markov chains on a couple of IRC channels and let it learn from all messages. After a couple of weeks people got into fiery arguments with it because they expected a human and instinctively ignored telltale signs of a chatbot.
August 24, 2025 at 6:34 AM
In the early 2000s we put a very simple chatbot based on Markov chains on a couple of IRC channels and let it learn from all messages. After a couple of weeks people got into fiery arguments with it because they expected a human and instinctively ignored telltale signs of a chatbot.
Reposted by meik
The AD CS security landscape keeps evolving, and so does our tooling. 🛠️
Valdemar Carøe drops info on Certify 2.0, including a suite of new capabilities and refined usability improvements. ghst.ly/45IrBxI
Valdemar Carøe drops info on Certify 2.0, including a suite of new capabilities and refined usability improvements. ghst.ly/45IrBxI
Certify 2.0 - SpecterOps
Certify 2.0 features a suite of new capabilities and usability enhancements. This blogpost introduces changes and features additions.
ghst.ly
August 11, 2025 at 8:38 PM
The AD CS security landscape keeps evolving, and so does our tooling. 🛠️
Valdemar Carøe drops info on Certify 2.0, including a suite of new capabilities and refined usability improvements. ghst.ly/45IrBxI
Valdemar Carøe drops info on Certify 2.0, including a suite of new capabilities and refined usability improvements. ghst.ly/45IrBxI
Reposted by meik
The latest Synacktiv Summer Challenge was in 2019, and after 6 years, it's back!
Send us your solution before the end of August, there are skills to learn and prizes to win 🎁
www.synacktiv.com/en/publicati...
Send us your solution before the end of August, there are skills to learn and prizes to win 🎁
www.synacktiv.com/en/publicati...
2025 Summer Challenge: OCInception
🏆 Prizes Here are the prizes for the top three participants:
www.synacktiv.com
July 31, 2025 at 2:42 PM
The latest Synacktiv Summer Challenge was in 2019, and after 6 years, it's back!
Send us your solution before the end of August, there are skills to learn and prizes to win 🎁
www.synacktiv.com/en/publicati...
Send us your solution before the end of August, there are skills to learn and prizes to win 🎁
www.synacktiv.com/en/publicati...
Reposted by meik
Phrack #72 release reveals TTPs, backdoors and targets of a Chinese/North Korean state actor mimicking Kimsuky
A copy of his workstation is available for all researchers to analyze!
Article: data.ddosecrets.com/APT%20Down%2...
Data dump: ddosecrets.com/article/apt-...
A copy of his workstation is available for all researchers to analyze!
Article: data.ddosecrets.com/APT%20Down%2...
Data dump: ddosecrets.com/article/apt-...
APT Down - The North Korea Files - Distributed Denial of Secrets
Approximately 9 GB of files exfiltrated from a North Korean threat actor's computer.
The data is being released alongside Phrack, and South Korean victims were notified prior to publication.
Resear...
ddosecrets.com
August 9, 2025 at 7:16 PM
Phrack #72 release reveals TTPs, backdoors and targets of a Chinese/North Korean state actor mimicking Kimsuky
A copy of his workstation is available for all researchers to analyze!
Article: data.ddosecrets.com/APT%20Down%2...
Data dump: ddosecrets.com/article/apt-...
A copy of his workstation is available for all researchers to analyze!
Article: data.ddosecrets.com/APT%20Down%2...
Data dump: ddosecrets.com/article/apt-...
Reposted by meik
Reposted by meik
The Dutch cybersecurity agency has released a script to detect webshells typically installed by attackers exploiting the CitrixBleed2 vulnerability in Citrix NetScaler appliances
github.com/NCSC-NL/citr...
github.com/NCSC-NL/citr...
GitHub - NCSC-NL/citrix-2025
Contribute to NCSC-NL/citrix-2025 development by creating an account on GitHub.
github.com
July 27, 2025 at 2:18 PM
The Dutch cybersecurity agency has released a script to detect webshells typically installed by attackers exploiting the CitrixBleed2 vulnerability in Citrix NetScaler appliances
github.com/NCSC-NL/citr...
github.com/NCSC-NL/citr...
Reposted by meik
We now have a (draft) @metasploit-r7.bsky.social exploit module in the pull queue for the recent Microsoft SharePoint Server unauthenticated RCE zero-day (CVE-2025-53770), based on the in-the-wild exploit published a few days ago. Check it out here: github.com/rapid7/metas...
July 23, 2025 at 1:18 PM
We now have a (draft) @metasploit-r7.bsky.social exploit module in the pull queue for the recent Microsoft SharePoint Server unauthenticated RCE zero-day (CVE-2025-53770), based on the in-the-wild exploit published a few days ago. Check it out here: github.com/rapid7/metas...
Sympa le cat /dev/urandom > /dev/sound à @le-hack.bsky.social :)
June 27, 2025 at 3:55 PM
Sympa le cat /dev/urandom > /dev/sound à @le-hack.bsky.social :)
Sometimes, even when you're willing to pay to watch a movie/documentary, it is not available to buy/rent/watch...Who could predict...
June 19, 2025 at 4:56 PM
Sometimes, even when you're willing to pay to watch a movie/documentary, it is not available to buy/rent/watch...Who could predict...
Reposted by meik
So-called “less-lethal” weapons like those that have been used against demonstrators in Los Angeles can cause severe, lasting harm like nerve or brain damage or blindness. They can also kill. www.wired.com/story/what-t...
What Tear Gas and Rubber Bullets Do to the Human Body
So-called “less-lethal” weapons like those that have been used against demonstrators in Los Angeles can cause severe, lasting harm like nerve or brain damage or blindness. They can also kill.
www.wired.com
June 10, 2025 at 10:36 AM
So-called “less-lethal” weapons like those that have been used against demonstrators in Los Angeles can cause severe, lasting harm like nerve or brain damage or blindness. They can also kill. www.wired.com/story/what-t...
Reposted by meik
Reposted by meik
The Linux kernel has added support for a new security feature named hardware-wrapped inline encryption keys
The feature stores encryption keys inside secure hardware components and prevents them from appearing in plaintext in system memory
lore.kernel.org/lkml/2025052...
The feature stores encryption keys inside secure hardware components and prevents them from appearing in plaintext in system memory
lore.kernel.org/lkml/2025052...
June 1, 2025 at 1:29 PM
The Linux kernel has added support for a new security feature named hardware-wrapped inline encryption keys
The feature stores encryption keys inside secure hardware components and prevents them from appearing in plaintext in system memory
lore.kernel.org/lkml/2025052...
The feature stores encryption keys inside secure hardware components and prevents them from appearing in plaintext in system memory
lore.kernel.org/lkml/2025052...
Reposted by meik
Les services secrets français craignent qu’une ingérence étrangère ne vienne fausser la présidentielle de 2027. Ils s’inquiètent de « l’infiltration » par la Russie « des milieux politiques français » et de la manipulation de l’information sur les réseaux sociaux.
www.mediapart.fr/journal/fran...
www.mediapart.fr/journal/fran...
Élections : la France redoute un scénario à la roumaine
Les services secrets français craignent qu’une ingérence étrangère ne vienne fausser la présidentielle de 2027. Ils s’inquiètent de « l’infiltration » par la Russie « des milieux politiques français …
www.mediapart.fr
May 17, 2025 at 5:11 PM
Les services secrets français craignent qu’une ingérence étrangère ne vienne fausser la présidentielle de 2027. Ils s’inquiètent de « l’infiltration » par la Russie « des milieux politiques français » et de la manipulation de l’information sur les réseaux sociaux.
www.mediapart.fr/journal/fran...
www.mediapart.fr/journal/fran...
Reposted by meik
Mozilla is shutting down Pocket
Pocket had a nearly two-decade-long run.
www.theverge.com
May 23, 2025 at 11:31 AM
Reposted by meik
New from 404 Media: iconic hacking con HOPE has sold 50% fewer tickets this year, with event just a few months away. Organizers say it's due to U.S. immigration crackdown. A speaker already pulled out, said friends' devices seized at border. Will impact the event www.404media.co/hacker-confe...
Hacker Conference HOPE Says U.S. Immigration Crackdown Caused Massive Crash in Ticket Sales
One scheduled speaker has also pulled out of the New York-based event and specifically pointed to Trump’s mass deportation efforts.
www.404media.co
May 22, 2025 at 2:34 PM
New from 404 Media: iconic hacking con HOPE has sold 50% fewer tickets this year, with event just a few months away. Organizers say it's due to U.S. immigration crackdown. A speaker already pulled out, said friends' devices seized at border. Will impact the event www.404media.co/hacker-confe...
Reposted by meik
We are very excited to announce that Volatility 3 has reached parity with Volatility 2! With this achievement, Volatility 2 is now deprecated. See the full details in our blog post: volatilityfoundation.org/announcing-t...
Announcing the Official Parity Release of Volatility 3!
Visit the post for more.
volatilityfoundation.org
May 16, 2025 at 2:57 PM
We are very excited to announce that Volatility 3 has reached parity with Volatility 2! With this achievement, Volatility 2 is now deprecated. See the full details in our blog post: volatilityfoundation.org/announcing-t...
Reposted by meik
After months immersed in organising @blackhatevents.bsky.social and a clutch of other conferences, one conclusion is stark: many talks would serve us better as properly argued articles. Conference fatigue is eroding the craft of the blog post and the long-form paper.
A good blog post is useful
A good blog post is useful
May 21, 2025 at 7:16 AM
After months immersed in organising @blackhatevents.bsky.social and a clutch of other conferences, one conclusion is stark: many talks would serve us better as properly argued articles. Conference fatigue is eroding the craft of the blog post and the long-form paper.
A good blog post is useful
A good blog post is useful
Et voilà, voiture baptisée
May 17, 2025 at 1:14 PM
Et voilà, voiture baptisée
Reposted by meik
