Show more

I finally finished all 10 objectives. This was a hell of a lot of fun, but man alive was it difficult at times! Learned a lot though, and definitely went way outside my comfort zone. Now I feel a bit empty...

Merry Christmas fediverse! Stay classy, stay rational, and stay happy this holiday season, no matter what you celebrate. Heck, even being happy it's a Tuesday is awesome in my books. 😁

Cool. Just found the block feature on Mastodon. No offense to Huawei, but I have no interest in your company or products. You guys lost me at you interrogation/interview a year ago.

Hey all, just a small update - the show may be done for the year, but I'm going to try to squeeze at least one more episode in this year. My apologies, poor scheduling and such on my part. I'll be back ASAP! Thanks!

Jayson E. Street shares a familiar story from one of his , but also follows up with a not-well-known epilogue that has me in stitches!

purplesquadsec.com/podcast/epi

Sigh. For all of those who raised concerns about the @tinker interview having too loud music to hear the discussion I have taken that one down and replaced it with a non-music version. Please share and re-listen! :-) Thanks everyone, and sorry for the mistake!

purplesquadsec.com/podcast/epi

Are you still looking for a team for the this year? is fast approaching! Sign up at signup.purplesquadsec.com/ to join our channel and join the Purple Squad Security squad as we undertake this year's challenge! All skills welcome!

With soon upon us, if anyone in the Fediverse is interested in joining in, Purple Squad Security has a small group of people lined up to work on it and share our experiences with each other. If you've never done a CTF, consider joining us! We do this via our Slack, which you can join via signup.purplesquadsec.com

That settles the story by Bloomberg. Independent investigation by a third party reveals no proof of tampering by the Chinese. Bloomberg you've published a bullshit story again
techcrunch.com/2018/12/11/supe

Did I just record a story with @tinker ? Yes, yes I did. And now I need to find some appropriate backing tracks for our chat...

Oh! Hi Mastodon, I didn't see you there for a minute. Let me just sit down and relax for a bit. It's so much more sane here...

It's really amazing to see how a change of scenery can change your own personal view of your skills. Surrounding yourself with crazy smart people can kickstart those creative juices and distract you from your own imposter syndrome, if only for a few weeks. Now I'm researching Beyond Corp, osquery, and raspberry pi hacking! I just got myself an early Christmas present. 🤗

pi-hole has been successfully installed and setup as my local DNS server. Now I wait to see who notices.

I'm looking at alternative hobbies to take my mind off of infosec. I do a bit of macrame, and I'm now leaning towards trying leather craft. What do you do as an alternative to your day job?

Operating one's own local DNS resolution servers is one of the simplest and lowest-cost things an IT administrator can do to monitor and protect applications, services, and users from potential risks.
darkreading.com/vulnerabilitie

RT @xychix@twitter.com
Building resilient C2 infra using DNS over HTTPS as a backup trigger. An example of how (and why!) to build layers and differentiation into your C2 channels. Including a cool example on hiding your payload in a robots.txt file. Blog post here: outflank.nl/blog/2018/10/25/bu

Show more
Infosec Exchange

A Mastodon instance for info/cyber security-minded people.