Spencer Walden

Today's study session - Studying x86 Assembly(It has been a bit tedious not gonna lie) Sometimes I feel stupid lol - Reading more about Reverse Engineering. It's a topic I always liked but was scared to get more into. Does anyone have any Binary Exploitation exercises?

Hey @Fama_Tech - Your product is shit and your company is shit. Not only is what you’re trying to do hurting society, but your delivery of it is completely worthless. Analyze this: https://twitter.com/kmlefranc/status/1223418818917060610?s=20 …

Ever wondered *how* those adverts manage to keep on finding you - even when you go incognito, switch devices, or never actually searched for the product in the first place? Let us count the (many, many) ways [THREAD]

looking for a job in security? looking for employees? been a while since i've seen a security job thread. let's post all of these here so people can network!

This might not be completely obvious, so I feel the need to say it. The sick day isn’t for your benefit. It is for the benefit of everyone else in the office. If you feel the need to be a hero, work from home.

How to Red Team #1 - A twitter red team mind map Need credentials from the outside? 1. OSINT (Find e-mail/PII) 2. Social Engineer (Trick someone into clicking an e-mail you sent them w/o a payload) 3. Target External Services (Password Spray or find a vulnerable service )

Want to know a fun thing about CVE-2019-0604? Thousands of publicly exposed systems still run SharePoint 2007. Doesn’t matter as the advisory says it doesn’t apply to SP 2007, right? Wrong. Exploit absolutely works, product is out of support. Vuln scanners don’t detect.https://twitter.com/gossithedog/status/1126833629236215808 …

We've all received emails with no attachment and assume it's "safe" to open in a mail client (as long as we don't explicitly click on any URLs). Right? Not so much...

ATTENTION STUDENTS Are you a current student? Are you looking to attend an infosec conference this summer? If so, this tweet is for you! I am gifting one student a pass to @BlueTeamCon*. Reply to this tweet with your major to be entered and I'll select a winner. Good luck!

Document unto others as you would have others document unto you.

What issues do people have with a #Sysmon rollout in an enterprise? Log volume? I’ve seen orgs worried about 20GB of daily Sysmon log data, while at the same time spending a 6 figure sum on a license to process 500GB of daily firewall log data. (which is mostly useless)

Windows Kiosk breakout tip: If you get a Printing panel, and the traditional methods don't work: Amongst the printers, select "SendTo OneNote" OneNote will launch -> Add new notebook On the Notebook -> New page Type: \\127.0.0.1\c$\windows\system32\cmd.exe Click the link