Grumpsec Spottycat @kyhwana@mastodon.social

RT @mholt6@twitter.com
Caddy is a great little tool to... prove key compromise. https://twitter.com/hexdefined/status/1185864801261477891

RT @Erica_fosk@twitter.com
There's a lot going on in this story.

A man who was locked in a cage with nothing to do wanted to smoke something to pass the time. I'll note here that locking people in cages is an excellent way to build drug addictions.

https://i.stuff.co.nz/national/crime/116039166/prison-spying-scandal-drugs-the-unauthorised-operation-and-the-police-investigation

RT @Suzi3D@twitter.com
THREAD:

New Zealand's latest 'Terrorism Suppression' bill allows authorities to deem you a terrorist 'on the balance of probability' w/o showing you evidence, then control your work/finances/movements/net access & prevent you telling ppl its happening

https://twitter.com/Suzi3D/status/1185700163991621635

RT @cn0Xroot@twitter.com
NFCGate: An NFC relay application for Android
https://github.com/nfcgate/nfcgate

RT @hexdefined@twitter.com
So apparently NordVPN was compromised at some point. Their (expired) private keys have been leaked, meaning anyone can just set up a server with those keys...

I did a gist on how to automagically spin up a Windows 10 Sandbox VM (requires Pro/Ent 1903+) with Ghidra https://gist.github.com/kyhwana/9f70a992cd9c256b82edc8a658777936
(The windows 10 sandbox VMs are ephemeral, but you can launch them via a configuration file that can set stuff up inside them)

How to pick lock with paws..

RT @ArtconomyArt@twitter.com
One year ago today we opened doors and to celebrate, we're running a raffle! RT to enter-- and the winner will receive a commission up to $100 in value from any available artist on the site!

RT @TalentedVoter@twitter.com
you: we should ally with cops over our mutual self-interest because after all they are workers too

cops: https://twitter.com/Breakaway_chi/status/1185229475396620289

RT @CasualLaw@twitter.com
PSA: If you are uncomfortable using a public bathroom with anyone whose genital history and configuration you are uncomfortable with you need to limit yourself to single stall bathrooms. https://twitter.com/_sagesharp_/status/1185606515496898560

Ah yes, typical pigs doing their typical piggy things.
---
RT @matalaz@twitter.com
Friendly police officers talking to a girl in Catalonia.
https://twitter.com/matalaz/status/1185330815338778624

RT @xssfox@twitter.com
Turns out the report regarding WannaCry spread on Victorian Speed Cameras is public - it's a half decent read on a lazy Saturday.

https://cameracommissioner.vic.gov.au/file-download/download/public/90

RT @xssfox@twitter.com
#aprsfox #soundup #notsorry

RT @CertifiedLeggy@twitter.com
they SCREAM

RT @___wintermute@twitter.com
@purpleconNZ@twitter.com

RT @mjg59@twitter.com
Oh hey it's my #kawaiicon talk: https://youtu.be/aecB2A_ad1A

RT @xssfox@twitter.com
every time I'm here....

RT @0x4D31@twitter.com
Here are some resources re my talk at @kawaiiconNZ@twitter.com✨:
- RDP Fingerprinting: https://medium.com/@0x4d31/rdp-client-fingerprinting-9e7ac219f7f4
- FATT; my py script for extracting fingerprints from pcap or live traffic: https://github.com/0x4D31/fatt
- Tweet coverage of the talk: https://twitter.com/jpdanner/status/1184961664724004864?s=21 #Kawaiicon #KawaiiconNZ

RT @kawaiiconNZ@twitter.com
We forgot to mention: all our speakers are going to have a fancy schmancy copy of their talks. The powers of live editing! Follow them and they just may post copies of their talk ✨online✨.

RT @ewenmcneill@twitter.com
“The people with the most knowledge of your systems are the ones who suffer the most” — @Fobski@twitter.com on coping with post breach situations.

#PurpleCon #KawaiiCon