The #HTTP Garden is a collection of HTTP #servers and #proxies configured to be composable, along with scripts to interact with them in a way that makes finding #vulnerabilities much much easier.
When I looked at the #shmoocon schedule, I thought I'd get a lot out of seeing @thepacketrat unpack his research into pig-butchering scams. Then I checked and saw that my client PCMag had somehow not run a breakdown of this tactic*, so I had to write up his talk.
The closing slides from this year's #shmoocon badge puzzle. As this was likely the last time I'll be able to compete in this contest, this year I played to win. And my daughter and I did just that! :)
(it also occurred to us way too late that we should've called ourselves "The Sith Lords," instead of "The Time Lords,” but since the theme of the con was time travel…the latter seems most appropriate anyway.)
I'm seeing an interesting trend between #hackaday#supercon and #shmoocon. When called out on their disgracefully gross single tone white cis male speaker lineups, they each responded with "we tried reaching out to other types of people (let me guess, a few white women), and they refused us".
This seems to clear their conscience and resolve it for them.
ahem YOU HAVE NOT MADE AN ENVIRONMENT GOOD FOLKS WANT TO PARTICIPATE IN.
Apart from during the pandemic, I've been getting my hair cut at the same place for 30 years, which is across the street from the old WaPo building in NW DC. Turns out today was not the best day to visit an establishment that is 3 blocks from the White House, because there are a ton of a people streaming by with banners calling for a cease fire in Gaza.
Took 45 minutes to get 2 miles because police were everywhere and had blocked off vast areas of Northwest DC.
@briankrebs You moved back to DC? Haven’t been tracking the socials as closely as I use to so probably missed it. You around at #ShmooCon this weekend?
After figuring out years ago that I can listen better, especially over long periods of time, if I have something to keep my hands busy, I try to always have a #crochet project on hand heading into multi-day meetings or conferences.
Ran out of time to prep for this one, so I started winding my skein into a yarn ball during opening remarks, got my sizing swatch done for a one-skein triangle shawl (Moogly Fortune's Shawlette) by the end of One Track Mind, and made a nice bit more progress during the firetalks...
It's the perfect con project - a simple diagonal-box-stitch repeat, no complex counting required. Just add a box every row until I run out of yarn, and then frog back until I have enough yarn left for the edging. 😁
We honestly spent as much time catching up with old friends and meeting new friends as we did attending talks - one of the many reasons we love this con so much! - so I'm only 33 rows in on the shawl. But it's shaping up nicely!
I love the interplay of this colorway and this pattern - thinking it'll be gorgeous once it's finished and blocked. 💖 @crochet
@wendynather Tonight's #shmoocon firetalk on the Cookie Dough model of security, in which @TindrasGrove made a great analogy to infosec from Nestle's "don't eat raw cookie dough" vs Pillsbury's "we made the cookie dough safe because we know you're going to eat it even if we tell you not to" reminded me in - the best possible way - of your incredible talk on Democratizing Security...
The Internet is for clicking - cookie dough is for eating - meet the users where they are!! 💞
Next up at #shmoocon#firetalks Edward Warren “Inter-App Collusion: Exploiting the Improper Export of Android Application Components for Privilege Elevation & Credential Theft”
#ShmooCon#Firetalks first speaker, Maddie Bright, is going on now! “Looking Into The Past: How Reflecting Helped Me Grow as a New Professional” Very relevant giving our time travel theme!