JavaScript is not available.

Feb 15, 2019

#ELF anatomy. 🧝‍♀️🧝‍♂️🧝‍♀️

The following media includes potentially sensitive content. Change settings

View

226

👼

Quote Tweet

@gianarb@m.gianarb.it

@GianArb

Challenge accepted

my fav hackyderm on stage

It wouldn’t be FOSDEM if I didn’t bump into the amazing Italian Contingent!

the room at #FOSDEM2023 is fine but I’m not sure I can forgive y’all for the missing bidet 💦

Feb 3

#FOSDEM2023’s calling ✈️

archive-tar: use internal gzip by default · git/git@4f4be00

Jan 31

github.com/git/git/commit To whom it’s thinking about supply chain security implications of this… Well, that’s not the main point at all! And definitely not the only point… Start by sending hugs to distro package maintainers today 😂

github.com

Drop the dependency on gzip(1) and use our internal implementation to create tar.gz and tgz files. Signed-off-by: René Scharfe Signed-off-by: Junio C Hamano

Hey

, looks like there's a room for you and Ricky 🥰

Who’s gonna be at #FOSDEM? 😊

My favorite hacking stories of 2022:

365

1,657

Spent the weekend becoming a package manager. Not sure that’s a good thing, tho… 🥲 How was your weekend?

Nov 26, 2022

This video recorder in a van is for all the Italian friends here, if you’re not an Italian friend keep scrolling. #ShitCast w/ ⁦

⁩

the Berkeley Packet Filter (BPF) is a subsystem of many Unix operating systems wherein all packets are sent to a server in Berkeley, California, which has the firewall rules on it.

283

2,105

Show this thread

Thorsten Leemhuis – the Linux kernel logger (1/5)

Retweeted

@kernellogger

Nov 15, 2022

"[…] series of #BPF blog entries by looking at observing userspace, and how this can be facilitated by adding Userspace Static Defined Tracing (USDT) probes to a library or program […] USDT tracing example that uses those mechanisms." #Linux #kernel

blogs.oracle.com

From kernel to user-space tracing

A great insight into how to utilize BPF for user-space tracing.

Nov 10, 2022

Bidet sinking > Kitchen sinking

I mean, an actual bidet

I've been dreaming for days now to go to the

HQ to present

with a bidet FYI

THIS

Quote Tweet

Anmol

@anmolm_

Nov 9, 2022

Next $1B startup idea in the US: BaaS (Bidets as a Service)

Track Chair: KubeCon + CloudNativeCon North America 2022 was issued by The Linux Foundation to...

Nov 7, 2022

It was an honor to serve this fantastic conference and its community as Track Chair for the Security track of the #KubeCon NA 2022. Plus, I love collecting badges from the

@linuxfoundation

! 😊

credly.com

Earners of this badge are subject matter experts, selected by the KubeCon + CloudNativeCon North America Co-Chairs, who have lent their time and expertise to further review proposals reviewed by the...

Retweeted

raptor@infosec.exchange

@0xdea

Nov 6, 2022

CVE-2022-43995 is really something. Sudo 1.8.0 through 1.9.12 contains an array-out-of-bounds error that can result in a heap-based buffer over-read. This can be triggered by local users with access to Sudo by entering a password of 7 chars or fewer. github.com/sudo-project/s

105

321

It has been a long time since we last met two of the best people in the world. And best part is they also make containers possible, the way we know them. Yay!

I like talks with shells! 🤓 I like less the YAML in it but still… 🙃 Learn Security with CTFs! by

@nataliaivanko

@denhamparry

is a very catchy and pragmatic presentation. Time to find flags now! 🏴‍☠️ Congrats folks! 🎉 sched.co/182Ej #KubeCon

Oct 27, 2022

Watch your verifier #kubeselfie #KubeCon

Quote Tweet

Carol Valencia

@krol_valencia

Amazing moment at #kubecon with the heroes of eBpf security @itaysk and @leodido

Tired but still rocking the conference!

@paulienuh

is not upset with me btw😍😜 #KubeCon #kubeselfie

KubeCon + CloudNative North America 2022: SLSA FRSCA Recipe For Secure Supply Chai...

Great talk (sched.co/182Jo) on SLSA FRSCA by

@mlieberman85

and

@pxp928

👏 Very informative!

kccncna2022.sched.com

View more about this event at KubeCon + CloudNative North America 2022

I see a graph and I’m sold. What can I do? BTW it’s dangerous to SLSA alone out there! Stay FRSCA!

Visit Shitroit /cc

😂

Now it's time to go deeper and generate Linux capabilities security context! #KubeCon #eBPF #security

How to record which syscalls are being performed in a container and create a seccomp profile for those? Strace? Naaaah.

@maurovasquezb

prefers less invasive approaches with less overhead: an #eBPF recorded 🫳 And now he's gonna demo it!

Slides 👉 static.sched.com/hosted_files/k

You can't miss this talk by my friend

@maurovasquezb

(and

@albcr

remotely). "Using the eBPF Superpowers To Generate Kubernetes Security Policies" Yes, you read that right! 👉 sched.co/182GW 15' to go, in the meantime a #kubeselfie with Mauricio! #KubeCon

Mauricio Vásquez Bernal

Lateral movement 101 twitter.com/krisnova/statu

This Tweet is unavailable.

Aaaaand here it is! #kubeselfie at #Kubecon2022 with

@krisnova

! How much did I miss hacking around with you 💔 Look at our faces

😂

Always worth 💯 looking into what my Nóva does! Go check out Auræ! twitter.com/krisnova/statu

This Tweet is unavailable.

Oct 25, 2022

Duffie 💗

Quote Tweet

Duffie Cooley

@mauilion

Oct 25, 2022

These two are amazing! @fntlnz @leodido

Ok, just a warning for Kubecon folks. While leaving a pub we had to call 911 because someone got beaten and robbed in front of our pub by a group. Don’t walk alone after 8pm, call a Uber even if it is close and be careful with your belongings (leave computer in hotel if you can)

214

Developer environments are not fucking containers. And Kubernetes is the wrong abstraction for them.

@GeoffreyHuntley

and me saying it loud while at the #KubeCon Week sounds promising! 😇

Oct 24, 2022

This week is gonna be busy AF! 🔥 In Detroit for #KubeCon & #CloudNativeCon. Plenty of interesting talks, a lot of friends from the CNCF and OSS communities… It’s gonna be fun! If you spot me around feel free to say hi and ask about that thingy I’m building don’t be shy👋🏼