SecByT̷͔̼̯̖̟͔͎͑̽o̶͚̠̰͚̩̻̝̰͂̿̔̄̊́͘m̷̡̟̍́̏̔ @GrrCon
@techbytom.bsky.social
Privacy, motorcycle, and craft beer geek. Adversarial thinker. Blue team your blue team for better red teaming.
If you’re involved in any form of protest organization or center/left leaning politics, go enable Lockdown Mode NOW. ssd.eff.org/module/how-t...
November 8, 2025 at 12:29 AM
If you’re involved in any form of protest organization or center/left leaning politics, go enable Lockdown Mode NOW. ssd.eff.org/module/how-t...
What do I win?
November 7, 2025 at 5:59 PM
What do I win?
Reposted by SecByT̷͔̼̯̖̟͔͎͑̽o̶͚̠̰͚̩̻̝̰͂̿̔̄̊́͘m̷̡̟̍́̏̔ @GrrCon
“We should have banned government use of face recognition when we had the chance because it is dangerous, invasive, and an inherent threat to civil liberties,” EFF’s @MGuariglia.bsky.social told @404Media.co. www.404media.co/ice-and-cbp...
ICE and CBP Agents Are Scanning Peoples’ Faces on the Street To Verify Citizenship
Videos on social media show officers from ICE and CBP using facial recognition technology on people in the field. One expert described the practice as “pure dystopian creep.”
www.404media.co
October 29, 2025 at 8:03 PM
“We should have banned government use of face recognition when we had the chance because it is dangerous, invasive, and an inherent threat to civil liberties,” EFF’s @MGuariglia.bsky.social told @404Media.co. www.404media.co/ice-and-cbp...
Reposted by SecByT̷͔̼̯̖̟͔͎͑̽o̶͚̠̰͚̩̻̝̰͂̿̔̄̊́͘m̷̡̟̍́̏̔ @GrrCon
As new projects, blog posts, and other efforts around TCG show up, I'm listing them here:
tradecraftgarden.org/references.h...
I've put together a Friends of the Tradecraft Garden list on BlueSky too:
bsky.app/profile/did:...
Thank you for building, exploring, & teaching w/ this young project 🪴
tradecraftgarden.org/references.h...
I've put together a Friends of the Tradecraft Garden list on BlueSky too:
bsky.app/profile/did:...
Thank you for building, exploring, & teaching w/ this young project 🪴
October 30, 2025 at 4:24 AM
As new projects, blog posts, and other efforts around TCG show up, I'm listing them here:
tradecraftgarden.org/references.h...
I've put together a Friends of the Tradecraft Garden list on BlueSky too:
bsky.app/profile/did:...
Thank you for building, exploring, & teaching w/ this young project 🪴
tradecraftgarden.org/references.h...
I've put together a Friends of the Tradecraft Garden list on BlueSky too:
bsky.app/profile/did:...
Thank you for building, exploring, & teaching w/ this young project 🪴
Reposted by SecByT̷͔̼̯̖̟͔͎͑̽o̶͚̠̰͚̩̻̝̰͂̿̔̄̊́͘m̷̡̟̍́̏̔ @GrrCon
I fixed the MCP server from the Kali repo so it's no longer openly hosting an authentication-free instance of Kali for everyone on your network to freely enjoy like your favorite PornHub category
github.com/johnnyxmas/M...
github.com/johnnyxmas/M...
GitHub - johnnyxmas/MCP-Kali-Server: MCP configuration to connect AI agent to a Linux machine.
MCP configuration to connect AI agent to a Linux machine. - johnnyxmas/MCP-Kali-Server
github.com
October 26, 2025 at 8:29 PM
I fixed the MCP server from the Kali repo so it's no longer openly hosting an authentication-free instance of Kali for everyone on your network to freely enjoy like your favorite PornHub category
github.com/johnnyxmas/M...
github.com/johnnyxmas/M...
Reposted by SecByT̷͔̼̯̖̟͔͎͑̽o̶͚̠̰͚̩̻̝̰͂̿̔̄̊́͘m̷̡̟̍́̏̔ @GrrCon
LibCPLTest: A shared library for Crystal Palace that allows you to unit test your PICOs. It's nothing too fancy, just a few helper functions and a macro, but it's helped me to create a consistent framework for testing my PIC capabilities.
github.com/ofasgard/Lib...
github.com/ofasgard/Lib...
GitHub - ofasgard/LibCPLTest: A shared library for Crystal Palace that allows you to unit test your PICOs.
A shared library for Crystal Palace that allows you to unit test your PICOs. - ofasgard/LibCPLTest
github.com
October 21, 2025 at 4:06 PM
LibCPLTest: A shared library for Crystal Palace that allows you to unit test your PICOs. It's nothing too fancy, just a few helper functions and a macro, but it's helped me to create a consistent framework for testing my PIC capabilities.
github.com/ofasgard/Lib...
github.com/ofasgard/Lib...
Donate. Please, please support the @EFF! Our collective privacy has never been more important or more at risk.
Technology like Flock and Ring doesn’t make people safer, it just subjects them to a round-the-clock warrantless digital dragnet. “Privacy isn’t dangerous, but giving privacy up for a false sense of security is very dangerous,” EFF’s Jennifer Pinsof told @CNBC.com. www.cnbc.com/2025/10/16/...
October 17, 2025 at 12:12 AM
Donate. Please, please support the @EFF! Our collective privacy has never been more important or more at risk.
HEY EVERY VENDOR. Remember all those times I was a HUGE PITA because you wanted a non-redacted copy of my ID? Yeah, this is why.
BREAKING: A catastrophic breach has impacted Discord user data including selfies and identity documents uploaded as part of the app’s verification process, email addresses, phone numbers, approximately where the user lives, and much more.
🔗 www.404media.co/the-discord-...
🔗 www.404media.co/the-discord-...
The Discord Hack is Every Users’ Worst Nightmare
A hack impacting Discord’s age verification process shows in stark terms the risk of tech companies collecting users’ ID documents. Now the hackers are posting peoples’ IDs and other sensitive informa...
www.404media.co
October 10, 2025 at 1:31 AM
HEY EVERY VENDOR. Remember all those times I was a HUGE PITA because you wanted a non-redacted copy of my ID? Yeah, this is why.
This, your company shouldn’t store this in email, ticketing, or ANYWHERE for any amount of time, ever.
According to their blog: "The unauthorized party also gained access to a small number of government‑ID images (e.g., driver’s license, passport) from users who had appealed an age determination. If your ID may have been accessed, that will be specified in the email you receive."
October 4, 2025 at 2:39 PM
This, your company shouldn’t store this in email, ticketing, or ANYWHERE for any amount of time, ever.
Catching @mr-minion.bsky.social’s talk at GrrCon this morning!
October 3, 2025 at 2:03 PM
Catching @mr-minion.bsky.social’s talk at GrrCon this morning!
Reposted by SecByT̷͔̼̯̖̟͔͎͑̽o̶͚̠̰͚̩̻̝̰͂̿̔̄̊́͘m̷̡̟̍́̏̔ @GrrCon
A little OpenGraph POC for mapping PE header imports of all .dll and .exe files in a fresh Windows install. These are all the binaries that have some kind of import chain leading to kernel32.dll
October 2, 2025 at 4:51 PM
A little OpenGraph POC for mapping PE header imports of all .dll and .exe files in a fresh Windows install. These are all the binaries that have some kind of import chain leading to kernel32.dll
Reposted by SecByT̷͔̼̯̖̟͔͎͑̽o̶͚̠̰͚̩̻̝̰͂̿̔̄̊́͘m̷̡̟̍́̏̔ @GrrCon
Nobody asked for it. We did it anyway.
If you ever used Winamp during the later years, it had an awesome, awesome visualizer called Milkdrop. The Webamp people implemented a workalike called Butterchurn.
Internet Archive now supports Webamp and Butterchurn. Just click on the llama!
If you ever used Winamp during the later years, it had an awesome, awesome visualizer called Milkdrop. The Webamp people implemented a workalike called Butterchurn.
Internet Archive now supports Webamp and Butterchurn. Just click on the llama!
September 30, 2025 at 6:13 PM
Nobody asked for it. We did it anyway.
If you ever used Winamp during the later years, it had an awesome, awesome visualizer called Milkdrop. The Webamp people implemented a workalike called Butterchurn.
Internet Archive now supports Webamp and Butterchurn. Just click on the llama!
If you ever used Winamp during the later years, it had an awesome, awesome visualizer called Milkdrop. The Webamp people implemented a workalike called Butterchurn.
Internet Archive now supports Webamp and Butterchurn. Just click on the llama!
Teaching the wife Diffie-Hellman exchange tonight.
September 23, 2025 at 12:15 AM
Teaching the wife Diffie-Hellman exchange tonight.
Reposted by SecByT̷͔̼̯̖̟͔͎͑̽o̶͚̠̰͚̩̻̝̰͂̿̔̄̊́͘m̷̡̟̍́̏̔ @GrrCon
ALPRs can still be abused given the sheer volume of data collected and the lack of transparency in who can request it. “What we actually need, if we want these laws to mean something, are robust oversight measures,” EFF’s @maassive.bsky.social told Spectrum News 1.
spectrumnews1.com/ca/southern...
spectrumnews1.com/ca/southern...
LA County moves to limit license plate data sharing amid ICE raids
State law prohibits local police from assisting federal immigration enforcement in California
spectrumnews1.com
September 19, 2025 at 10:26 PM
ALPRs can still be abused given the sheer volume of data collected and the lack of transparency in who can request it. “What we actually need, if we want these laws to mean something, are robust oversight measures,” EFF’s @maassive.bsky.social told Spectrum News 1.
spectrumnews1.com/ca/southern...
spectrumnews1.com/ca/southern...
Reposted by SecByT̷͔̼̯̖̟͔͎͑̽o̶͚̠̰͚̩̻̝̰͂̿̔̄̊́͘m̷̡̟̍́̏̔ @GrrCon
September 19, 2025 at 11:14 PM
I put together a script to verify that your linux/mac install didn't get a compromised npm package. This, unlike some other checks out there, looks through your prior installed packages to make sure an update didn't obscure the compromise.
gist.github.com/TechByTom/5f...
gist.github.com/TechByTom/5f...
Check for 9-8-25 NPM Supply Chain Compromised packages (bash)
Check for 9-8-25 NPM Supply Chain Compromised packages (bash) - check-npm-compromise.sh
gist.github.com
September 10, 2025 at 10:16 PM
I put together a script to verify that your linux/mac install didn't get a compromised npm package. This, unlike some other checks out there, looks through your prior installed packages to make sure an update didn't obscure the compromise.
gist.github.com/TechByTom/5f...
gist.github.com/TechByTom/5f...
Some say write-ups are too OP. I dressage. We love seeing the work.
This CTF gave double points if you submitted writeups so we submitted writeups for every single challenge in an eligible category, because we’re overachievers
There were 2914 possible challenge points and this was the final board after all writeups were accepted
There were 2914 possible challenge points and this was the final board after all writeups were accepted
September 8, 2025 at 6:16 PM
Some say write-ups are too OP. I dressage. We love seeing the work.
Way to go!
September 7, 2025 at 10:42 PM
Way to go!
Reposted by SecByT̷͔̼̯̖̟͔͎͑̽o̶͚̠̰͚̩̻̝̰͂̿̔̄̊́͘m̷̡̟̍́̏̔ @GrrCon
I'm one of the 37 targeted below by DNI Tulsi Gabbard. I haven't had a clearance nor worked in government since 2013. This is political theater & a dangerous example of government abusing its powers to punish private citizens for openly exercising their 1st Amendment rights. My full statement:
August 26, 2025 at 1:42 PM
I'm one of the 37 targeted below by DNI Tulsi Gabbard. I haven't had a clearance nor worked in government since 2013. This is political theater & a dangerous example of government abusing its powers to punish private citizens for openly exercising their 1st Amendment rights. My full statement:
Reposted by SecByT̷͔̼̯̖̟͔͎͑̽o̶͚̠̰͚̩̻̝̰͂̿̔̄̊́͘m̷̡̟̍́̏̔ @GrrCon
This is both funny and horrifying.
Horrifying because people are using and trusting this tool to be reliable and wrecking careers when it's wrong.
Horrifying because people are using and trusting this tool to be reliable and wrecking careers when it's wrong.
August 16, 2025 at 1:54 PM
This is both funny and horrifying.
Horrifying because people are using and trusting this tool to be reliable and wrecking careers when it's wrong.
Horrifying because people are using and trusting this tool to be reliable and wrecking careers when it's wrong.
/me cries in HIPPA
August 16, 2025 at 8:11 AM
/me cries in HIPPA
Reposted by SecByT̷͔̼̯̖̟͔͎͑̽o̶͚̠̰͚̩̻̝̰͂̿̔̄̊́͘m̷̡̟̍́̏̔ @GrrCon
PHENOMENAL work by @censys.bsky.social w/special shout out to one of the best cyber researchers out there (Himaja, who is smartly not on social media).
They discovered sophisticated proxy infra designed for long-term espionage operations, & most victims probably have no idea they're compromised.
They discovered sophisticated proxy infra designed for long-term espionage operations, & most victims probably have no idea they're compromised.
2025 State of the Internet: Digging into Residential Proxy Infrastructure
In-depth analysis of the PolarEdge botnet (first reported on by Sekoia in early 2025) a suspected ORB targeting edge devices since mid-2023. This blog covers infrastructure patterns, profiles current ...
censys.com
August 14, 2025 at 5:33 PM
PHENOMENAL work by @censys.bsky.social w/special shout out to one of the best cyber researchers out there (Himaja, who is smartly not on social media).
They discovered sophisticated proxy infra designed for long-term espionage operations, & most victims probably have no idea they're compromised.
They discovered sophisticated proxy infra designed for long-term espionage operations, & most victims probably have no idea they're compromised.
Reposted by SecByT̷͔̼̯̖̟͔͎͑̽o̶͚̠̰͚̩̻̝̰͂̿̔̄̊́͘m̷̡̟̍́̏̔ @GrrCon
Last thought: while I'm on a tradecraft+capability separation kick, I intend Crystal Palace as an open-ended object/PIC stitching sandbox. Keep playing with it. Try different ideas. It's really cool. This is what organic cross-inspiration and conversation looks like. I pivot when inspired too.
July 21, 2025 at 2:37 PM
Last thought: while I'm on a tradecraft+capability separation kick, I intend Crystal Palace as an open-ended object/PIC stitching sandbox. Keep playing with it. Try different ideas. It's really cool. This is what organic cross-inspiration and conversation looks like. I pivot when inspired too.
Reposted by SecByT̷͔̼̯̖̟͔͎͑̽o̶͚̠̰͚̩̻̝̰͂̿̔̄̊́͘m̷̡̟̍́̏̔ @GrrCon
Oh hey, the first video is now available!
Check out Steve Shelton’s keynote for #BSides312, the abstract for which had me sobbing.
Check out Steve Shelton’s keynote for #BSides312, the abstract for which had me sobbing.
July 17, 2025 at 2:57 AM
Oh hey, the first video is now available!
Check out Steve Shelton’s keynote for #BSides312, the abstract for which had me sobbing.
Check out Steve Shelton’s keynote for #BSides312, the abstract for which had me sobbing.
Reposted by SecByT̷͔̼̯̖̟͔͎͑̽o̶͚̠̰͚̩̻̝̰͂̿̔̄̊́͘m̷̡̟̍́̏̔ @GrrCon
Astronomers may have just discovered the third interstellar object passing through the Solar System!
ESA’s Planetary Defenders are observing the object, provisionally known as #A11pl3Z, right now using telescopes around the world.
ESA’s Planetary Defenders are observing the object, provisionally known as #A11pl3Z, right now using telescopes around the world.
July 2, 2025 at 8:23 AM
Astronomers may have just discovered the third interstellar object passing through the Solar System!
ESA’s Planetary Defenders are observing the object, provisionally known as #A11pl3Z, right now using telescopes around the world.
ESA’s Planetary Defenders are observing the object, provisionally known as #A11pl3Z, right now using telescopes around the world.