gradius @gradius@infosec.exchange
Infosec dude at Riot Games. 0xgradius on Twitter. video games, programming, security, automation, hacking = <3
#introduction -
Network security at a game company. Interested in network defense, ctfs, bug bounties, programming, automation, video games, etc.
something something long walks on the beach, my twitter is here:
Sharing the meme-love with Mastodon as well ;)
#infosec
Apparently next week’s patch Tuesday is going to be a big one, fixing multiple RCEs. Get some sleep this weekend.
Also, while trying to get root, I kept getting spammed by someone via wall, LOL, telling me I was "hacked"
Climbing the HackTheBox ladder along with League of Legends ranked ;D
#infosec
Kind of forgot to open a Mastodon tab after I decided to make this more of a high-quality, less shoot-the-shit platform. I realize now that I need to sprinkle a bit of social along with content for me to come back to a platform.
So hello again, world! :)
Hey #infosec peeps! Looking to put together a collection of resources for security engineers of all levels to start up/level up their skills in programming. If you know of anything that was useful to you (prog. language doesn't matter), send me a link! <3
To follow up with my Medium post from yesterday about containerizing my NSM stack, I've updated my Github documentation wiki with the steps in the article, as well as a bit more technical information. Feedback is appreciated! Enjoy! #infosec #suricata
https://infosec.exchange/media/d3M8nFZUtIZRjzH_7_E
https://github.com/gradiuscypher/grIDS/wiki/Docker-Configuration
The mastodon stages:
1: getting used to the interface
2: discovering that most people are just people, engaged in everyday adventures, big & small
3: the allure of the notification sound
4: a gradual getting used to the fact that not everything is about US politics, and that it's okay to filter it out on a macro level
5: a quiet moment when you think "there can still be poetry in this world"
6: some sort of reconciliation with the quantum magic that is the federated timeline
7: pineapples
A quick article I put together summarizing my work into getting an NSM stack working in Docker containers. Lots of work to be done still, but I wanted to share this with those who were curious about what I finished so far. #infosec
https://medium.com/@0xgradius/containerizing-my-nsm-stack-docker-suricata-and-elk-5be84f17c684
this is how my in laws wrapped one of my Christmas gifts... lol.
With all the useful advice I'm getting from people, and what work I'll be doing to make sure I get this right, maybe this will help someone else :)
Time to take good notes I guess :P
Looking for a mix of best practices, non-invasive changes and updates, as well little suggestions to make life as "IT support" easier.
Hey #infosec peeps, with the holidays fast approaching, trying to think of all the things I can cover with family member's PCs to help clean em out and lock em down. Recommendations?
Had a chance to talk to high schoolers and early vocational school students (information security tracks) about hacking and pentesting. Spoke to two groups and walked them through a tabletop of breaching a company.
A lot of enthusiastic folks. A lot of great back and forth! That was a blast.
Pretty cool way of visualizing my Github stats :D
so #InfoSec slash #netsec people, I notice a shift in terms; even though botnets are worms and ransomware (often) Trojans, the latter terms are rarely used anymore; it's interesting to note IMHO.
also, you never see actual viruses that infect executables anymore. malware history (incl. trends) is an interesting if not often brought up topic in these circles IMHO. from bored teenagers to intelligence agencies...
I used chrome to adjust the left-most Mastodon bar to a few px smaller, and now I can fit my relevant colums on a 1920x1080 monitor without scroll :D
https://infosec.exchange/media/TJDP5wVjIDncVpf2ggw
Hey #infosec peeps, if you have any recommendations for tuning Suricata IDS (both physical and VM). Trying to get packet drops as low as possible on the Suricata side.
As always, feedback/contributions are welcome and highly appreciated! :D
My first contribution to knowledge share on Mastodon - A repo of doc/reading material that I worked with others to create for people interested in getting started with #Infosec:
