Mastodon#infosec

Dominant #antivirus company #Kapersky offers to turn its source code over to US gov't, in a bid to allay fears it has too close a relationship w/ #Russia gov't technewsworld.com/story/84564. #infosec

Petit lot de présentations pour découvrir la partie hardware de vos machines, la fragilité des différents firmwares qui tournent dans les composants de celles-ci #infosec : github.com/advanced-threat-res

😐 This dubious legislation for offensive security is unethical and dangerous for private sector networks. You can't "retrieve stolen files from hackers". The word they are looking for is "destroy". This bill would promote widespread information system disruptions that are difficult to contain. #infosec #riskmanagement

thehill.com/policy/cybersecuri

Great #easternphilosophy lesson applies to tech debt and #infosec pretty well. Focus on making, not securing will cause large amount of pain in [probable near] future. infosec.exchange/media/S3svVwW

Great lesson applies to tech debt and pretty well. Focus on making, not securing will cause large amount of pain in [probable near] future. mastodon.social/media/7CJQrjMP

SambaCry exploit (CVE-2017-7494) PoC - Even include a vulnerable docker container to try it yourself 👍

github.com/opsxcq/exploit-CVE- #cve #poc #exploit #infosec #samba

Shodan.io brings 500k results for Samba...
shodan.io/search?query=port%3A

If you're participating in the SafeStack CFT in , please let me know how your testing has gone. Success stories are just as important as bug reports.

more #infosec questions

Are there any downsides to doing full disk encryption on a developer laptop?

#infosec question.

What is the best way to keep a directory encrypted on a laptop? Also , looking for solutions on macOS, Linux and Windows.

Just one week before the Juhannus TurkuSec is organizing a workshop on reverse engineering and everybody who is interested are welcome. Mastermind and the instructor of the workshop is k4m1, winner of DisObey challenge, TurkuSec speaker and member of Pwnyan.

More info: turkusec.fi/2017/05/24/Worksho

#infosec #turku #suomi #reversing #reverseengineering #workshop

so… Windows 10 doesn’t seem to give a crap your security preference

latesthackingnews.com/2017/05/

Not that it is very surprising - but still quite interesting to see how far they go to get it their way…

@Trav1sty @ispaul its the whole info sec thing and layout. Last i saw, was about a month of activity going on for #infosec, then if fizzled. Maybe I need to check out some other instances for the content and finding others to follow.

Building a botnet on PyPi (Or being able to)

hackernoon.com/building-a-botn #infosec

Tl;Dr
Register packages with builtin module names (sys, json etc...) on PyPi containing malicious payload.

This week's goal: start working on a patch to to make it impersonate other hypervisors. Useful for malware analysis.