InsanityBit

@InsanityBit

Previously: Developer on InsightIDR , Security Engineer for Detection & Response Currently: TBD

San Francisco
Vrijeme pridruživanja: lipanj 2012.

Tweetovi

Blokirali ste korisnika/cu @InsanityBit

Jeste li sigurni da želite vidjeti te tweetove? Time nećete deblokirati korisnika/cu @InsanityBit

  1. Prikvačeni tweet
    12. stu 2019.

    Example of a few correlated analyzers. One is a recursive search; look for processes with IPC to sshd/ssh-agent, recurse the process lineage until there's a uid/auid mismatch. Other analyzers are unique (grand/)parent of ssh and parent/child auid/uid mismatches.

    Prikaži ovu nit
    Poništi
  2. prije 8 sati

    mutmut is really cool, but it's like 5-10 seconds per mutation, and even with just a few files being tested I have > 1000 mutations.

    Poništi
  3. proslijedio/la je Tweet
    prije 23 sata

    in 2020 we format nested loops for what they are

    Poništi
  4. proslijedio/la je Tweet

    Little reminder for everybody who just saw that Verizon commercial about first responders.

    Poništi
  5. proslijedio/la je Tweet

    Shoutout to the guy who made small talk to me outside shmoocon while i was smoking a cigarette. It's quiet for a second and he goes "so do you uh use metasploit a lot?" and i was like "oh uh actually i used to use it all the time" and he goes "...yeah i was just joking man" LMFAO

    Poništi
  6. proslijedio/la je Tweet
    1. velj

    The positive flags section is equally good:

    Prikaži ovu nit
    Poništi
  7. proslijedio/la je Tweet
    1. velj

    ICYMI Manticore has a new release out today, 0.3.3! It now supports symbolic execution of WASM, which I bet is going to be very useful in 2020.

    Prikaži ovu nit
    Poništi
  8. proslijedio/la je Tweet
    29. sij

    I made a goose that destroys your computer Download it free here:

    Prikaži ovu nit
    Poništi
  9. proslijedio/la je Tweet
    31. sij

    I've been spending a lot of time with CPU atomics...

    Poništi
  10. proslijedio/la je Tweet
    31. sij

    In agile dev teams of today, standup must adapt to the demands of modern software development, updating the Three Questions as follows: • “How many browser tabs did you close yesterday?” • “How many tabs do you plan to close today?” • “What is stopping you from closing tabs?”

    Poništi
  11. proslijedio/la je Tweet
    30. sij
    Odgovor korisnicima

    Just because a problem can be made less annoying doesn’t change the fact that it’s still a problem that exists for no reason other than aesthetic preferences of Rob Pike

    Poništi
  12. proslijedio/la je Tweet
    30. sij

    Yes, in theory you could have developed a compiler with the latest and greatest architecture from the start, but when you’re not even sure what you’re building is possible, choosing the most stable architecture is the correct call.

    Prikaži ovu nit
    Poništi
  13. proslijedio/la je Tweet
    30. sij

    It really shows how far Rust has come, before ~2013 what Rust does is something people thought was *maybe impossible*.

    Prikaži ovu nit
    Poništi
  14. proslijedio/la je Tweet
    30. sij

    Laughing maniacally at how the obsession with leetcode style questions for tech interviews has backfired and big tech companies are bloated with incompetent engineers who only know how to pass the test

    Prikaži ovu nit
    Poništi
  15. proslijedio/la je Tweet

    Sometimes my kid wails that he needs help with Legos. My inclination was to consult on structure, add pieces. This always made him cry. I finally figured out that the "help" he needs is for me to sit quietly next to him while he figures it out. And isn't that what we all want?

    Poništi
  16. proslijedio/la je Tweet
    28. sij
    Odgovor korisnicima

    Have seen all three, although all very annoying, there are workarounds which make it bearable. Of the list, no client-to-client is the most annoying. But overal, the most annoying is good visibility by the blue team. Not being able to misbehave without getting caught is nightmare

    Poništi
  17. proslijedio/la je Tweet
    30. sij

    This is the only public training I'll do this year. If you're interested in AWS security and heading to summer camp, you should sign up.

    Poništi
  18. proslijedio/la je Tweet
    28. sij

    1. Windows Defender 2. EDR 3. Automated defanging of documents 4. Disabling macros, OLE, DDE, etc. 5. Disabling Windows Script Hosting 6. Private VLANs 7. Application whitelisting 8. Users not being local admins 9. 2FA on everything 10. Up-to-date patching

    Prikaži ovu nit
    Poništi
  19. proslijedio/la je Tweet

    [asking a question on StackOverflow] Me: "I'd like to do <x>, but I'm having trouble flibbleflobbing my fribblenobbers." [a concerned citizen approaches, and asks with a straight face] Them: "Why? Why would you ever want to do this?" [a mod approaches] Mod: "Resolved."

    Poništi
  20. 29. sij

    So far this looks the simplest.

    Prikaži ovu nit
    Poništi
  21. 29. sij

    Any suggested mutation testing frameworks? Ideally that integrate with pytest-cov.

    Prikaži ovu nit
    Poništi

Čini se da učitavanje traje već neko vrijeme.

Twitter je možda preopterećen ili ima kratkotrajnih poteškoća u radu. Pokušajte ponovno ili potražite dodatne informacije u odjeljku Status Twittera.

    Možda bi vam se svidjelo i ovo:

    ·