Pinned toot

Did you know that in 1982 there was a "Silver Spoons" episode where the main character cracks the encryption of a US military computer and publishes classified weapons secrets in a school newspaper? This was before "War Games" was a movie. Bonus: Gary Coleman was in the episode, guest-starring as Arnold from "Different Strokes." Double bonus: They have to go on the run from the FBI. imdb.com/title/tt0700793/

Pinned toot

Let's see. When I was younger I liked telephones. A lot. I still do. That included exploring the PSTN and causing general mischief. I have a Western Electric 1D2 payphone in my bedroom. Among other hobbies... I'm an amateur radio operator, Linux user, open source supporter and electronics meddler. I admire any human who has the patience to work in infosec.

I can't really stomach the wallowing echo chamber of Twitter, so maybe this will be better.

When the DEFCON Arts and Entertainment team gives a shout out to Ruth Bader Ginsberg.

Then Friday and Saturday I'll be participating in the OpenSOC CTF, learning about threat hunting and IR. And then on Sunday I'll be watching the (free) Blue Team Village workshops I registered for. Not a bad first .

Show thread

If I'm being honest I've never been to DEFCON and I'm not really the type. I've never liked big crowds and 30,000 people is a little much. But this year it's virtual and the price is right!

On Thursday I'll be in an all-day class learning about analysis tools like Graylog, Moloch, osquery, Velociraptor, Zeek, Suricata, etc. Those talks will be free to the public on twitch. cfc.blueteamvillage.org/call-f

Hey look everybody, the DHS is using to collect information on journalists. From the article it doesn't look like very sophisticated intelligence, but read from it what you will. washingtonpost.com/national-se

Really enjoyed your talk on federated instances at HOPE conference today c0debabe @TheGibson, @TheDoctor, and R¥. Wanted to make sure I caught it live.

I'll be handling the virtual information booth and answering attendee questions. I've been attending the HOPE conference this week and yesterday I won my first CTF! It was an OSINT CTF. And then I spent most of last night coding in COBOL for fun. So I'm all over the place right now. 👍 I really enjoy this community and it's great to be back.

Show thread

Hello fediverse! It's been a second since I checked in. Let's see. Since lockdown the job I had ended permanently. During that time I took some free security classes with Marcus J Carey, one of the authors of "Tribe of Hackers." He then helped me get a Security+ voucher and I passed the exam earlier in the month. Now I'm in a temporary staff role at The Diana Initiative helping put the virtual conference on in a few weeks. If you want to volunteer please click below. docs.google.com/forms/d/e/1FAI

Am I the only one who double checks to make sure their VPN is working properly every time? Like checking for DNS leaks and opening Wireshark each time you start it. Is that normal behavior or a tad obsessive? It's not like I'm dealing with top secret info.

Hot damn. It's only now that I truly understand all that goes into organizing a conference. And I was just a volunteer, not even an organizer! The WomenHackerz 1st (virtual) conference was a great success. We'll be back next year, hopefully in person.

Did you know that in 1982 there was a "Silver Spoons" episode where the main character cracks the encryption of a US military computer and publishes classified weapons secrets in a school newspaper? This was before "War Games" was a movie. Bonus: Gary Coleman was in the episode, guest-starring as Arnold from "Different Strokes." Double bonus: They have to go on the run from the FBI. imdb.com/title/tt0700793/

While we have a stellar lineup of speakers already we're still looking for more talks for WomenHackerz con.

is a virtual hacking conference held on June 6th & 7th welcoming everyone! Share your talks with the world! CFP submissions are still open.

papercall.io/whackzcon

Ok, I can't be the only one who has accidentally typed in infosex dot exchange as opposed to infosec dot exchange right? The keys are pretty close together.

woland boosted

Nearly half of Twitter accounts pushing to reopen America may be bots

Kathleen M. Carley and her team at Carnegie Mellon University’s Center for Informed Democracy & Social Cybersecurity have been tracking bots and influence campaigns for a long time. Across US and foreign elections, natural disasters, and other politicized events, the level of bot involvement is normally between 10 and 20%, she says. But in a…

technologyreview.com/2020/05/2

Every day is a chance to learn something new. That’s how I’ve been trying to cope with this crisis. A few days ago I started studying the Diffie-Hellman key exchange and now I understand how it works and the modular arithmetic behind it. This helped me learn more about cryptography. I’ve never been very good at math, and I don’t have a college degree. But that doesn’t matter. Don’t ever let society’s expectations or roles prevent you from learning. You don’t need anyone’s permission.

"While the hacker’s script has since stopped working after changes to Ohio’s website, another hacker has taken up the project and plans to release an updated version, the anonymous hacker told Motherboard."

Show thread

Hacker targets Ohio snitch-line set up for employers to report workers who do not return to work because of safety concerns (in order to kick them off unemployment). File this under play stupid games, win stupid prizes.

vice.com/amp/en_us/article/n7w

woland boosted

What could be better than a #netbsd VM running under #slackware ?

Why *two* #netbsd VMs running under #slackware of course!

(Stop me before I spawn a third!)

woland boosted

WeChat Surveillance Explained.
The Citizen Lab published a report that documents how WeChat (the most popular social app in China) conducts surveillance of images and files shared on the platform and uses the monitored content to train censorship algorithms. This document provides a summary of the research findings and questions and answers from the research team.
citizenlab.ca/2020/05/wechat-s

I've had a productive afternoon playing around with hping3, a packet creator and diagnostic tool. You can use it as a basic port scanner or send all kinds of terminal-crafted packets. All of the TCP flags! Looking forward to using it on my snort configuration.

From WomenHackerz: "We are celebrating our one year anniversary on June 6th & 7th in the best way possible ... a virtual conference! Everyone is welcomed to attend. We will have free talks, free workshops, free CTFs, lock picking sessions, and more!"

Details and CFP here womenhackerz.com/whackzcon-202

Show more
Infosec Exchange

A Mastodon instance for info/cyber security-minded people.