sten0 ✅ is a user on mastodon.social. You can follow them or interact with them if you have an account anywhere in the fediverse. If you don't, you can sign up here.

sten0 ✅ @sten0_SE@mastodon.social

Schrödinger's Ops... production is in a constant superposition of states between "duct-taped together" and "everything's on fire"

😂 mastodon.social/media/HRjJa6Ax

KFC to start taking/storing facial image scans because how could that POSSIBLY go wrong?

"KFC ensures they will be secure" lmao ok, and I'm a Nigerian Prince who just needs to transfer some funds for an upcoming trip.

See enclosed a check for $5,000 USD. Please cash, take $500 for troubles, and wire the rest to my offshore acct.

Thanks mastodon.social/media/wNRoXLnA

F04 update: Riding vertibird, killing deathclaws with GAT-GAT-GAT (minigun) while listening to Johnny Cash's "Ghost Riders in the Sky" is so statisfying. Short Change Hero by the Heavy is great for glowing sea (thunder/lightning matches up).

This gives killing the first Witcher 3 boss (griffin, and many similar ones after) while listening to "puff the magic dragon" a run for it's money.

😂

sten0 ✅ boosted

'course, half the goddamn problem is that there are five fucking people on the call, and four of them are fucking redundant.

sten0 ✅ boosted

@abbenm @sten0_SE
Oh, absolutely.

Infosec is hard. Opsec is hard. Blueteaming on either is extra hard because redteaming is so easy. That's pretty widely accepted.

But, because of the stakes involved, it's not unreasonable to dogpile on minor mistakes.

Engineering nuclear power plants is hard, but that doesn't mean we give people a pass when one melts down. The engineers know this and are extra careful.

Re:

If you didn't know about the "hidden" printer dots that get added I have a few others for you. The general idea is called "canary trapping" and takes many forms ranging from differeing stories, font spacing, scene markers (film industry), high-pitched frequencies beyond human hearing range (music industry) etc.

nbcnews.com/news/us-news/feds-

mastodon.social/media/jYVmEj34

sten0 ✅ boosted

Reminder: don't actually delete your Yahoo account because they can reissue your email address to the next person who wants it: honeypot.net/purge-your-yahoo-

Also.. here's my playlist when Diamond City Radio gets old.

Everything from love and raiding to western/wanderer, heart break, happiness and back again. mastodon.social/media/aWiLfx30

ICYMI: ~600 pg monster covering damn-near everything about VM/homelabs. Last day to get it for free... buy it anyway!

courtesy of @da_667 (same handle on tweeter)

blindseeker.com/AVATAR/AVATAR-

sten0 ✅ boosted
sten0 ✅ boosted

Good roadmap to learning exploitation.

"From 0x90 to 0x4c454554, a journey into exploitation"

myne-us.com/2010/08/from-0x90-

Call your CS reps, ask about policy, and poke around. Sometimes you can add notes to account to help protect and for others it's just good to know how "secure" you are.

Also start poking at various password reset methods and take note of what information they give out (even partial cell/credit #'s, account name, email addy etc can be big).

mastodon.social/media/k9TGMdtA

sten0 ✅ boosted

Bypass security on any AT&T wireless by logging onto ufix.att.com

Start checking all those wifi's near you... securitymastod.one/media/yK_lN

Officially dc'ing from the cyber interweb matrix to go hiking/kayaking/camping and build fires all weekend.

Catch you on the flip side mastodon.social/media/aEoeDoXa

Happy Friday.... it's almost over, then you can [maybe] feign not feeling genuinely insane for a few days. Any cool plans? I'm dc'ing from net and going as deep into nature as possible. mastodon.social/media/AjZluJEc

Did you know? Clouds are formed from the evaporated tears of many thousands of network and systems admins mastodon.social/media/g3ikKTz9

sten0 ✅ boosted

😐 This dubious legislation for offensive security is unethical and dangerous for private sector networks. You can't "retrieve stolen files from hackers". The word they are looking for is "destroy". This bill would promote widespread information system disruptions that are difficult to contain. #infosec #riskmanagement

thehill.com/policy/cybersecuri

sten0 ✅ boosted

The #OpenVPN audits yield a mixed bag.

Low-medium vulns but nothing considered "high" - crypto solid.

Possible problems with implementation (par for course really).

threatpost.com/openvpn-audits-