Abraxas

@AbraxasSC2

I do infosec things and used to do sysadmin things. Red and blue team interests. Trying to make things a bit more secure. Feel free to ask me stuff.

San Diego, CA
Vrijeme pridruživanja: travanj 2012.

Tweetovi

Blokirali ste korisnika/cu @AbraxasSC2

Jeste li sigurni da želite vidjeti te tweetove? Time nećete deblokirati korisnika/cu @AbraxasSC2

  1. proslijedio/la je Tweet
    prije 20 sati

    Extending BloodHound: Part 1 - GPOs and User Right Assignment

    Poništi
  2. proslijedio/la je Tweet
    4. velj

    I had to look it up... sadly SQLi will turn 22 this year. So little bobby can vote, drink, and rent a car in the United States.

    Poništi
  3. proslijedio/la je Tweet

    I know a few folks who could make use of this stuff right about now. A good starting point. Free starting point.

    Poništi
  4. proslijedio/la je Tweet
    31. sij

    Blue Team Con is not your typical cybersecurity conference. It will act similar to a hacker conference. There is not a set agenda where you see talks from 9am to 5pm and then leave for the day, unless that’s what you want to do. It’s very informal and it’s all up to you! 1/3

    Prikaži ovu nit
    Poništi
  5. proslijedio/la je Tweet
    30. sij

    I'm not saying all certifications are bad, but security is a very broad industry, the CISSP is an inch deep, a mile wide, and now appears to be a baseline cert for every job. This means ISC2 can jack up rates whenever they want. This is the problem

    Poništi
  6. proslijedio/la je Tweet

    Two things on this. Click final "Read more" at the bottom of the article to see how owned they got. Spoiler: a lot. Also: "Under diplomatic immunity, the UN is not obliged to divulge what was obtained by the hackers or notify those affected." A source at UN says 400gb taken.

    Poništi
  7. proslijedio/la je Tweet
    28. sij

    Today I learned my role has been eliminated. If you know of any awesome orgs looking for a passionate, values driven people person let me know! While this kind of news is never easy, I’m eager for my next adventure!

    Poništi
  8. proslijedio/la je Tweet
    26. sij
    Poništi
  9. proslijedio/la je Tweet
    23. sij

    I've received a lot of comments about how the GREM is out of reach for a lot of folks. I totally recognize how supremely luck I am to have received the training and certification, when it is out of reach for a lot of folks. Let's talk about mending that gap: 1/

    Prikaži ovu nit
    Poništi
  10. proslijedio/la je Tweet
    22. sij

    Here is the link to the SpecterOps Adversary Tactics: PowerShell course material: Enjoy! For information about our current training offerings, information can be found here: (4/4)

    Prikaži ovu nit
    Poništi
  11. proslijedio/la je Tweet
    23. sij

    Massive operations error exposes 250M customer records. Lesson - lock down your elastic stack!!!

    Poništi
  12. proslijedio/la je Tweet
    23. sij
    Prikaži ovu nit
    Poništi
  13. proslijedio/la je Tweet
    20. sij

    From reddit. Four powershell commands to help you find insecure LDAP bindings:

    Poništi
  14. proslijedio/la je Tweet

    Whelp, this about wraps it up for memcpy_s(). It looks like we need to go back to the drawing board and find a new secure function to copy memory in C.

    Prikaži ovu nit
    Poništi
  15. proslijedio/la je Tweet
    17. sij

    Apparently HP remotely disabled perfectly good ink cartridges because I don’t pay a monthly fee? For the first time in my life I have a mechanically reliable printer and just got owned by a subscription.

    Prikaži ovu nit
    Poništi
  16. proslijedio/la je Tweet

    So this thing. Which leads me to ask "WHERE THE F*** HAS CveEventWrite() FUNCTION BEEN FOR THE PAST 30 YEARS"?????

    Prikaži ovu nit
    Poništi
  17. proslijedio/la je Tweet

    And not just Microsoft, but something we need to add everywhere, including Apple, Linux, Gnu, other open-source projects. We shouldn't just fix vulns, but add detection for attempted exploitation.

    Prikaži ovu nit
    Poništi
  18. proslijedio/la je Tweet
    16. sij

    Unsolicited professional advise thread. Reply to this with your unsolicited professional advise. I'll go first. In everything you do, ask yourself: "How does this provide value?"

    Poništi
  19. proslijedio/la je Tweet
    15. sij

    This is a friendly reminder than the Arista 7060PX4 switch exists, which I still can't get over. Just in case you want 32 ports of 400Gbps in a 1U pizza box. 🤯

    Prikaži ovu nit
    Poništi
  20. proslijedio/la je Tweet
    16. sij
    Odgovor korisniku/ci

    This is a cool thing called a LightBoard and uses a mirror to look the way it does, I’ve worked on a team that built one.

    Poništi

Čini se da učitavanje traje već neko vrijeme.

Twitter je možda preopterećen ili ima kratkotrajnih poteškoća u radu. Pokušajte ponovno ili potražite dodatne informacije u odjeljku Status Twittera.

    Možda bi vam se svidjelo i ovo:

    ·