Pinned toot

Introduction:
I'm a systems guy, from tabletop rpgs, to video games, from programming to security and back again.

Got to live my dream young and be a videogame designer, learned you don't always actually want what you dreamed about. Now I work in Infosec. I dig cute things and complex things. Apologies in advance if I sometimes come off a bit callous, I don't mean it!

Also worth noting EECploit means rowhammer works even on machines with ECC memory as well. If it has a non-Core series Intel CPU, it's basically vulnerable. This is going to be a real doozy.

To be clear, not only execute from javascript, but execute in a timely manner (46s to discover addresses + a targeted rowhammer attack). This is going to be a real problem.

So, now that someone has found a better version of SPECTRE and Meltdown that you can execute from Javascript, what are we going to do? Source: arxiv.org/pdf/1903.00446.pdf

Deveyus boosted

#introductions

I'm a just a dude that makes #web apps using #Angular and #dotnet.

I'm still blazing the trail that is my life and hope I'm also able to make positive impact on peoples lives around me.

Small background in #ElectricalEngineering
and enjoying life in the great state of #Texas, USA.

I have a love for all things #Tech such as #Smartphones, #Software and #IoT. Along with #podcasts and #music. I'm a sucker for #AudioGear as well.

Also, shout out to @Deveyus for introducing me to #Mastodon.

Today in technology that amazes me:

The "Popcorn" button on my microwave, does in fact, not burn my popcorn or leave a ton of it unpopped.

Looking to try a relatively minimal but still capable of GUI linux implementation to build out some tooling on, any suggestions?

Anyone have any particular suggestions for android Mastodon clients?

It is difficult to believe that people in this day and age can actually still mess up something like this. All my day needs to be complete now is a major error in something reasonably critical that comes from not doing rudimentary validation of user input and we'll have the trifecta. Bad Certs, integer overflow and unvalidated user input.

Introduction:
I'm a systems guy, from tabletop rpgs, to video games, from programming to security and back again.

Got to live my dream young and be a videogame designer, learned you don't always actually want what you dreamed about. Now I work in Infosec. I dig cute things and complex things. Apologies in advance if I sometimes come off a bit callous, I don't mean it!

Wow, I think I've followed more people on mastodon who are interesting in the past 10 minutes, than I have on twitter in years of having it.

Just got on mastodon via Infosec.exchange, any particular recommendations of people to follow?

Infosec Exchange

A Mastodon instance for info/cyber security-minded people.