callionica, to random
@callionica@mastodon.social avatar

People should think about what Apple’s boundary conditions for the #CTF mean. If Apple is willing to hold off on charging a fee for three years, it probably means that most small development businesses on the AppStore don’t see a profit for three years. Apple knows how long it takes for devs to get from sign up to ship, and they know how long it takes to get from shipping to decent revenue. It’d be naive to think they don’t use that information. #DMA

rozie, to random Polish
@rozie@mastodon.online avatar

Cele pozorne

Czasami jest tak, że to, co wydaje się celem, wcale celem nie jest. Łatwo to przeoczyć, szczególnie, jeśli mamy do czynienia z punktacją czy ogólnie gamifikacją.

Ale jak to? O co chodzi? Może łatwiej będzie na przykładzie. Weźmy konkurs, kto zbierze najwięcej śmieci podczas oczyszczania lasu. Czy zwycięstwo w tym konkursie jest najważniejsze? Czy bardziej liczy się sam fakt sprzątania, a miejsce w kon

https://zakr.es/blog/2024/04/cele-pozorne/

MarcT0K, to privacy French
@MarcT0K@mastodon.acm.org avatar

Bonjour, I'm Marc (a.k.a. "T0K_"), a student working on -preserving technologies. Outside the lab, I spend my time playing and losing challenges.

With this account, I'll promote some of my academic work . I might also engage in stupid and vibrant debates about random geeky stuffs .

I'm not entirely sure yet what I'll do with this Mastodon account, so I don't exclude the possibility of some cat pics or even some shitposting

1ns0mn1h4ck, to Cybersecurity French

🚨📢 Insomni'hack 2024:

🛡️[WORKSHOP] Windows Attack & Defense by Clément Labro & Julien Oberson.

👉 Don’t miss this opportunity to attend this 2-days workshop at Insomni’hack 2024! Details and registration: https://insomnihack.ch/workshops-2024/

rek2, to hacking
@rek2@hispagatos.space avatar

AFTER 4 WEEKS! On and off at it, I FINALLY DID IT!!! Fucking hardest machine I have ever done in in 6-7 years! OMG I again have all the boxes that give points done 100% https://www.hackthebox.com/achievement/machine/16000/581 come to to .2600 and .2600.madrid FUCK YEAH I am getting drunk tomorrow!

nnubes256, to infosec

Hello infosec.exchange! Here's an . I am currently an student on starting research on dongles, but sometimes I also do , and for the thrill.

I wanna use this account to talk and ask questions to the wider community. I may also share of ongoing campaigns from time to time. I also have a main account (@Nnubes256) for more general stuff; I'm just moving my presence where the action is :D

1ns0mn1h4ck, to Cybersecurity French

🚨📢 Registration for Insomni'hack 2024 is now open !

👉 🎫 Early Bird tickets are available until Jan. 31st, 2024 : https://www.insomnihack.ch/register/

nono2357, to infosec

The first annual will be held online December 20-31, 2023 with the goal of highlighting a new subset of features and tools added to FISSURE each year. Register and view details at:
https://fissure.ainfosec.com

tante, to Bitcoin
@tante@tldr.nettime.org avatar

I get a lot of people calling out my skepticism (as in: Bitcoin is a worthless piece of hot garbage trying to kill our planet) because number is again going up. This time it's real, now that the scamers have been caught and all.

But if you want to know why Bitcoin goes up you just need to look at one curve: Tether has printed 4 billion USD from thin air in the last week.

While it's great to see the crypto scam artists SBF and CZ been caught and punished (sadly without making their victims whole) the actual rock that whole scam economy is built on is Tether. Has been Tether for years.

And I really don't get why US regulators let some weird company print fake USD.

kkarhan,
@kkarhan@mstdn.social avatar

@tante It's also the same reason why the doesn't go after vouchers and why exist:

Those are locked-in, / solutions and both PSC as well as do comply with , & regulations...

In fact, Tether and 's "" does have functions specifically to comply with listings and and do enforce them against i.e. :

https://www.youtube.com/watch?v=wwBnf-e1PY8&t=295s

Adorable_Sergal, to random
@Adorable_Sergal@hachyderm.io avatar

In this home, we honour the Flag.

A tech base-looking room is split into two tiers, the upper tier holding a holographic blue hammer flag on a small pedestal in front of a relief of a blue hammer on the back wall. Several metallic support pillars rim the open space in front of the flag that drops down to a lower floor with walkways and Martian dirt.
A blue hammer flag waves in the foreground in an open arena with two polyhedral columns rising up to either side of the arena. The sky is open overhead, and the dusty tan-pink of the planet Stroggos can be seen between those two columns.
In a room with a massive lava pool at its centre, a blue hammer flag is set off on a platform overlooking the pool. The room is split into two tiers with a bridge on the second tier spanning over the lava pool. A battle takes place in the distance, bloody gibs spewing in an open hallway.

rek2, to cyberpunk
@rek2@hispagatos.space avatar

/ Mix - Holograph // Dark - https://vid.puffyan.us/watch?v=IMLWXwy0EPU @cyberpunk

pyratebeard, to hacking

if you are a fan of online scavanger hunts then check out https://cyb.farm by z3bra.

it is probably the most immersive online hunt i have done. the amount of effort that has gone in to the puzzles and the story is top notch.

realn2s, to random

The is over.

I learned a lot and had quite some fun. Thanks for that 😃​

But there is also some room for improvement (which caused quite some frustration)

  1. Make the flags more liberal what is accepted. Eg. Ignore blank, especially around CSV lists. It took me and others quite some time to work out the correct format.

  2. I found the hints quite often not helpful and rather confusing. Eg. the sole hint for finding a cleartext password was something like "Cracking the hash takes forever. So skip that".

This leads to 3.

Digital forensic isn't my daily business, neither are CTFs.

  1. If your CTF target beginners provide more (up front) hints about the tooling. It is quite frustrating if you try to search for tooling for a problem, you might not even be able to state correctly. And the downloading tools and try to understand and use them only to fail. Never knowing if it is the wrong tool, or if it is you using the tool incorrectly.

It would have great to know up front which tools to install. Especially if they require a Windows VM (mimikatz, PECmd, ...)

I don't think tool hints would spoil too much of the fun.
Advanced participant will know them anyway (mostly) and installing and reading up on them a bit in advance saves time for the real fun 😃​

realn2s, to random

do Not create VMs with only 25GB disk. It will hurt you in the worst possible moment (e.g. in a timebox @dragosinc /
😬​

rek2, to cyberpunk
@rek2@hispagatos.space avatar

/ Mix - Nanomorph // Dark

rek2, to cyberpunk
@rek2@hispagatos.space avatar

/ Mix - Synthesize
Dark

https://vid.puffyan.us/watch?v=v5cwV-B1_gQ

#
@cyberpunk

Goofygiraffe06, to bot

DailyCTF Robot: A discord bot written in python3, allowing to host and manage CTFs on Discord.

Ever thought of turning your Discord server into a mini-CTF arena? I built a Discord Bot just for that From challenge creation, hint releases, to flag submissions and leaderboards, writeups, it's got it all automated. Designed with Python3 at its core, this bot is all about giving a seamless CTF hosting experience. Dive into the bot's GitHub](https://github.com/Goofygiraffe06/DailyCTFRobot) to explore more. Community Feedback, thoughts, forks, or stars - all are welcome!

Thanks.

jomo, to random
@jomo@mstdn.io avatar

Playing be like

mattbit, to random

The @defcon CTF on machine-learning organized by the AI Village is out!

It’s your turn to evade, poison, steal, and fool AI/ML models. 50k USD in cash prizes.

Link: https://www.kaggle.com/competitions/ai-village-capture-the-flag-defcon31

goncalor, to random

Started the , which will last the whole of October.

https://huntress.ctf.games/

goncalor,

Solved all challenges except for one (need Windows, which I can't use or a VM at the moment).

So far I think this CTF is quite cool for practice for beginners.

Thank you Huntress team for organising this.

https://huntress.ctf.games/

rek2, to Synthwave
@rek2@hispagatos.space avatar

Darksynth / Cyberpunk Mix - Insurgence
// Dark

https://vid.puffyan.us/watch?v=F4PSxw3ubWQ

#
@cyberpunk @hispagatos

nohatcon, to Cybersecurity

💻 PWNX No Hat 23 CTF event 💻
🗓️ When? 14/10 6:00 pm - 15/10 6:00 pm (CET)
🔗 Register & Details: https://www.nohat.it/ctf.html

cincura_net, to random
@cincura_net@mas.to avatar

Current status: Manually creating traces in hex editor.

f4grx, to infosec
@f4grx@chaos.social avatar

What tool sends requests made of 3 levels of subdomains in hex strings with a 1-byte command prefix (00 start file, 01 file data, 02 file end) followed by a two-byte packet number, with packets sent in semi-random order? We solved it, but I wonder it exist or was it made for the purpose of the exercise?

  • All
  • Subscribed
  • Moderated
  • Favorites
  • anitta
  • khanakhh
  • mdbf
  • InstantRegret
  • Durango
  • Youngstown
  • rosin
  • slotface
  • thenastyranch
  • osvaldo12
  • ngwrru68w68
  • kavyap
  • cisconetworking
  • DreamBathrooms
  • megavids
  • magazineikmin
  • cubers
  • vwfavf
  • modclub
  • everett
  • ethstaker
  • normalnudes
  • tacticalgear
  • tester
  • provamag3
  • GTA5RPClips
  • Leos
  • JUstTest
  • All magazines
    •