Avi Douglen

@sec_tigger

'Cuz AppSec is what Tiggers do best! Hoohoo HOO! Leads consulting , loves /, moderates . He/Him. +5 kids👩‍👩‍👧‍👦

Israel
Vrijeme pridruživanja: studeni 2010.

Tweetovi

Blokirali ste korisnika/cu @sec_tigger

Jeste li sigurni da želite vidjeti te tweetove? Time nećete deblokirati korisnika/cu @sec_tigger

  1. Prikvačeni tweet
    18. velj 2019.
    Odgovor korisnicima

    I'm really tired of cons that insist on a gender quota. Very quickly they run out of quality talks from the "right" gender and start accepting crap talks from "quota speakers". And great talks are ignored from the wrong gender. Really, insisting on 85% males is harming everyone.

    Poništi
  2. proslijedio/la je Tweet
    prije 16 sati

    The Call For Trainings for Global AppSec Dublin 2020 has opened. Submit your training here:

    Poništi
  3. proslijedio/la je Tweet

    Fight for your candidate in the primaries, definitely. But be prepared to rally around whoever wins it in the general. The stakes are too high. Must I make a list of all the people who will be most vulnerable, most likely to suffer or harmed further if Trump wins again?

    Prikaži ovu nit
    Poništi
  4. proslijedio/la je Tweet
    2. velj

    This is how we start the week! What about you? BsidesTLV 2020 CFP is open Submit and share.

    Poništi
  5. proslijedio/la je Tweet
    2. velj

    The latest example of women not feeling safe & facing direct threats/abuse at a security event. Also sadly this time, it happened to a dear friend. Insist on codes of conduct, people - we have to hold ourselves accountable.

    Poništi
  6. proslijedio/la je Tweet
    1. velj

    Really awesome seeing Netflix take quantified risk by implementing into their practices, and as Netflix does - share back to the community. Kudos!

    Poništi
  7. proslijedio/la je Tweet

    Fun fact: I actually use my Twitter as a way to filter out job offers from super corporate hellscapes that'd want to exert control over my life outside work.

    Prikaži ovu nit
    Poništi
  8. proslijedio/la je Tweet
    31. sij

    Fun fact: "If you can't measure it, you can't manage it" is a misquote. I know, I got it wrong for *years* too! The full Deming quote is actually: “It is wrong to suppose that if you can't measure it, you can't manage it – a costly myth.”

    Poništi
  9. proslijedio/la je Tweet
    31. sij
    Odgovor korisnicima i sljedećem broju korisnika:

    I’m happy to see that developer security education is becoming the norm. Lot’s of great trainers out there including the Manicode team! 🤙🏼 Thanks Matt! cc’ing the Manicode team of trainers:

    Poništi
  10. proslijedio/la je Tweet
    31. sij

    After three years of preparation, our SAMM team has delivered version 2 of SAMM! More details here: A big thanks to our community, your feedback, corrections, questions, input, and encouragement. SAMM version 2 is for you!

    Poništi
  11. proslijedio/la je Tweet
    30. sij
    Odgovor korisniku/ci

    I learned this while building out my team over 18 months. According to ISC2 we're looking at 3m unfilled jobs. Postings need to be written to sell the company to the candidate. "Ask not what that candidate can do for you, but what you can do for the candidate."

    Poništi
  12. proslijedio/la je Tweet
    28. sij

    ’s Application Security Verification Standard is one of the few comprehensive guides of security requirements for applications. Join as he talks through some of the more interesting new requirements in version 4.0

    Poništi
  13. proslijedio/la je Tweet
    28. sij
    Odgovor korisnicima i sljedećem broju korisnika:

    I also wrote an opinion and inquisitive piece on how that paradigm shift could inform particular focus for threat modelling here

    Poništi
  14. proslijedio/la je Tweet
    28. sij
    Odgovor korisnicima i sljedećem broju korisnika:
    Poništi
  15. 28. sij

    Hey have you done a for implementing a full program? Or seen one that worked well? In particular looking for info on 's model applied for this. how about you?

    Poništi
  16. proslijedio/la je Tweet
    27. sij

    “If you are in a position where you’re asked to write letters of recommendation, this flier offers useful tips for ways to avoid gendered language that could undermine the student you’re recommending.”

    Poništi
  17. 25. sij

    This is a fantastic thread, not just about open wifi and captive portals, but about how to do a mindful risk analysis and consider the context when a security control comes in contact with humans.

    Poništi
  18. proslijedio/la je Tweet
    24. sij

    8) "BUT YOUR WIFI IS OPEN, THERE IS NO ENCRYPTION, ANYONE CAN HACK ME!" No. Most services you use online today are encrypted (HTTPS you know). Quite a few of them has even configured HTTPS to a level where MitM is very, very hard to do for an adversary. Even on open wifi!

    Prikaži ovu nit
    Poništi
  19. proslijedio/la je Tweet
    24. sij

    The hardest thing in security isn’t knowing all the ways you could be hacked. It’s knowing which threats matter!* *I lied. The hardest thing is actually knowing which attacks DO NOT matter.

    Prikaži ovu nit
    Poništi
  20. proslijedio/la je Tweet
    21. sij

    Me and proud to invite you to special networking event including cocktails 🍹 food 🥘 and you 🙂 the event is sponsored by . Please reserve your spot so we can arrange accordingly.

    Poništi
  21. proslijedio/la je Tweet
    22. sij

    Yesterday I learned (YIL?) that even if a type is standard layout, and trivially copyable, it is not always safe, even in practice, to use it a destination for std::memcpy or to zero it with std::memset. That is, the following is not safe:

    Prikaži ovu nit
    Poništi

Čini se da učitavanje traje već neko vrijeme.

Twitter je možda preopterećen ili ima kratkotrajnih poteškoća u radu. Pokušajte ponovno ili potražite dodatne informacije u odjeljku Status Twittera.

    Možda bi vam se svidjelo i ovo:

    ·