I'm on the fence between ZorinOS and ElementaryOS for my aunt's first Linux distro (her Windows10 was beyond saving, imagine ass-cancer levels of infection)
Which one would you recommend? She's been on Windows all her life, so I thought Zorin, but ElementaryOS looks so damn nice. I'd like something Debian-based and simple enough for a noobie to use. Windows looks are just icing on the cake.
I've been lurking here a while, and realized I never did a proper #introduction.
I'm primarily a software developer, and have had a passion for AppSec and InfoSec since writing my first robust login page.
I was a Solo dev, writing line-of-business apps for my family's farm business for years before transitioning to development in a more professional context. After "going pro", I found the get-it-done attitude I picked up working solo lands me a lot of work at the intersection of Dev and Ops.
Researcher pulls Black hat Asia talk on hacking apple's #FaceID saying he was only able to reproduce hacks on iPhone X under certain conditions, but it did not work with iPhone XS and XS Max. Good PR for Apple, shitty PR for his company.
It’s good that US CERT issued an advisory about critical Windows Server vulnerabilities today. Almost a month after the patch was released. https://www.us-cert.gov/ncas/current-activity/2019/01/04/CERTCC-Reports-Critical-Vulnerabilities-Microsoft-Windows-Server
Strap yourselves in folks
If you're in #infosec and you're in Europe, the Middle East, or Africa, there's a great award to recognise an outstanding contributor: the ISLA (Information Security Leadership Award). Nominations close in 2 weeks: https://www.abstractscorecard.com/cfp/submit/login.asp?EventKey=ZVLLTVYZ
I've heard people kicking around ideas that would put people in charge of their data by effectively letting them rent it out to other companies, but this is the first time I've seen anyone actually try and build it.
It's an interesting concept, but I wonder if it would gain any adoption from the major players in surveillance capitalism.
My #infosec #introduction: After a few years as a security executive in the private sector, I’m now in risk management & information assurance in the gov world. I got my start in networking on a help desk, and raised my hand when my company at the time needed to start dealing with PCI. I love blue team, wish I was better at red, and usually just feel like I have so much to learn and not enough time to do it.
I’m lost and need some guidance.
I want to design my own baseboard for a Raspberry Pi Compute Module.
But, I’m ignorant and a complete noob as it relates to anything associated with this.
Where do I start? Any beginner how-to’s or books you recommend?
Oh hey, I forgot to spam my blog post here. It's an interactive guide for learning ROP, should be fun.
In the final few stages of preparing for oscp/crest certifications, after years of (serious) playing with/studying a broader range of relevant computer tech than seems to be needed for the oscp at least.
I'm not a fan of mainstream social media, or the direction the web generally seems to have headed in over the last several years, so hoping for something a bit different here!
God, these browser bugs are complex. I'm so hungry and it feels like that makes reading it harder. Lunch in 15 minutes
1) UPnP is bad and stupid. Turn that crap off, folks.
2) looking forward to this troll getting busted and getting legally pwned.
Pewdiepie fanboi printer, Chromecast haxxx0r retreats, says they're 'afraid of being caught'
Somebody call the waaaaaambulance
Pewdiepie fanboi printer, Chromecast haxxx0r retreats, says they're 'afraid of being caught' • The Register https://www.theregister.co.uk/2019/01/03/pewdiepie_printer_hacker_deletes_accounts/