r000t boosted

So the Windows XP leak is pretty interesting. I grabbed a copy for the lulz here.

Will there be backdoors? Most likely not. It is in fact entirely possible that this leak has been tampered with by MS/govt. to reduce risk of something like that being exposed.

Moreover, it’s also possible that the backdoor, if it exists, will be obfuscated behind multiple exploit chains—most definitely not something you can find by merely skimming the source.

r000t boosted
r000t boosted

A test engineer walks into a bar, orders a mag of beer.
A test engineer walks into a bar, orders 50 mags of beer.
A test engineer walks into a bar, orders 0.746 mag of beer.
A test engineer walks into a bar, orders 10000 mags of beer.
A test engineer walks into a bar, orders a mag of pee.
A test engineer walks into a bar, orders a tank of water.
A test engineer walks into a bar, orders ahsbwhdheuc mag of beer.
A test engineer walks into a bar, orders /$&@"(&(: mag of beer.
A test engineer walks into a bar from drain, and leave by jumping out of the window.
A test engineer walks into a bar, orde
A thousand test engineers rush into a bar, and rush out.
A test engineer walks into a bar, orders 2"; DROP TABLE bar; mag of beer.
A test engine walks into the bar, punches tender's face.
A test engineer leaves the bar with satisfied face.

END OF STORY:
A client walks into the bar, orders a plate of pasta, the bar explodes.

r000t boosted

Rolled the dice on a faulty DEQ2496 on ebay. Turns out it just has bad power supply caps. When I took it apart I noticed the firmware is stored in socketed flash, and I couldn't help myself, I had to edit the splash screen...

r000t boosted

Putting the EICAR Anti Malware Test File (eicar.org/?page_id=3950) in a QR code and putting it up everywhere is a hilarious idea.

r000t boosted
r000t boosted

As seen on Mastodon! 

@TheGibson literally impervious to remote attackers

r000t boosted
shitposter.club upgraded GNUSocial from 3.10.3-My favorite manga is Boku no Pico to 8.6.10-Just me and my daddy, hanging out I got pretty hungry so I started to pout 😞 He asked if I was down ⬇for something yummy 😍 and I asked what and he said he'd give me his cummies! Yeah! Yeah! I drink them! I slurp them! I swallow them whole😍 It makes daddy 😊happy😊 so it's my only goal...😫Harder daddy! Harder daddy! 😫 1 cummy, 2 cummy, 3 cummy, 4 I'm daddy's princess but I'm also a whore!: — https://fediverse.network/shitposter.club

@TheGibson now if I'm reading it right, you can only *use it* on a domain controller, right?

as in, ordinary windows 10 machines and windows server not acting as a DC are fine?

r000t boosted
r000t boosted

@tuxcrafting @igel
Only a few Linux kernel developers/maintainers do it out of the kindness of their hearts. The rest work for Red Hat.

r000t boosted
RT @Foone@twitter.com

Yesterday I had a lot of retweets and reddit posts and such for playing Doom on a pregnancy test.
But as I explained then, it wasn't really PLAYING on a pregnancy test, it was just a video being played back, not an interactive game.

Well, now it is. It's Pregnancy Test Doom!

🐦🔗: https://twitter.com/Foone/status/1302820468819288066

Hey everyone, let's all laugh at and make fun of Voatz, a company that miserably failed a third party audit, skips basic protections and monitoring that even an itty bitty shitty MSP has, uses **wildcard certs lmao**, stores creds in MongoDB (after being told they can't store it in git), and STILL wants you to think they've made internet voting secure

arstechnica.com/tech-policy/20

r000t boosted

Meta 

If you punish someone instead of offering education, you are failing to affect meaningful change.

You must recognize good faith, and engage to change perspectives if you want the world to be better.

Too few are willing to do this in this age.

At hackers.town, we have long embraced the idea of helping the N00b.

We have also long acknowledged that we are all N00bs at something.

Know when to help a N00b, especially if you have a strong base of knowledge around a topic.

Don't assume their lack of knowledge is an attack on your expertise.

Find the educational moments and exploit them.

Save the world.

@sexybiggetje
F-Droid is an alternate app store. You also don't necessarily need it if you're only grabbing fedilab (you could just grab the apk) It also doesn't replace Google Play.
@fedilab

hey
some of you guys are pretty alright
dont come to zoom class tomorrow

Show more
Infosec Exchange

A Mastodon instance for info/cyber security-minded people.