da_667

@da_667@infosec.exchange

Senior Security Researcher, Proofpoint Emerging Threats.

I've been doing this cybersecurity thing for the better part of a decade now. Probably longer than that. I'm starting to forget. Time is relative, but it surely isn't kind to my memory.

I'd like to think I do cybersecurity well, but blue teamers collectively get told they're doing it wrong constantly. So maybe I just failed forward throughout my career.

Oh, I wrote a book. Its a good framework for setting up a virtual machine lab. See my bookmarked toots if you're curious.

Work-Related hashtags:
#Iocs #ThreatIntel #DFIR #Malware #NSM #suricata #snort #BEC #phishing #APT #ThreatDetection

Hobbies:
#VideoGames #XCOM2 #Minecraft #Synthetik #Fallout #Skyrim #Anime #Manga #Adventure #Fantasy #Isekai #HomeImprovement #WoodWorking #MetalWorking #HomeLab

This profile is from a federated server and may be incomplete. Browse more on the original instance.

da_667, to random

write-up on CVE 2024-21893 dropped.

https://attackerkb.com/topics/FGlK1TVnB2/cve-2024-21893/rapid7-analysis

TLDR: unauthenticated POST request to /dana-ws/saml20.ws with XML SOAP ENVELOPE

<ds:RetrievalMethod URI="http://192.168.86.35:4444/hack%20the%20planet"/>

da_667, to random

Its very rare that I take much seriously around here, but... I'd like to extend my support to those of you out there affected by the latest rash of layoffs in what can only be described as continuing to squeeze blood out of turnips.

Usually if I get tapped for a position on LinkedIn or other places, and I think the position isn't terrible, I'll post it here. I also usually repost those who are looking for work.

I would recommend hitting reddit's /r/netsec and checking out the hiring thread there.

Consider Checking the Infosecjobs and GetFediHired hashtags around these parts for more leads.

If your local bsides or security conference has a slack/discord/whatever, get involved. A lot of the times the folks you meet at your local security meetups will become invaluable friends who will help get you hired. For example, the Defcon Blue Team Village Discord has a Jobs channel.

If there is any chance you're looking for something to keep you occupied, and you have some free time, consider trying to establish a home lab. I have a book on this subject (https://leanpub.com/avatar2).

I'm not trying to sell you anything, you can acquire my book for free. See if it helps you out.

Sometimes during interviews, people will ask you what you do in your off time, or if you have any projects or other things you do to tangentially related to IT/Infosec.

You start telling them about your home lab, their eyes glaze over, and that checks a box for them, that shows them you are motivated to learn more.

Write about your lab experiences and/or maybe things you did differently for your environment. Maybe write about why you wanted to make a homelab to begin with. Maybe you want to analyze malware and write IDS or Yara rules. Maybe you saw cool things on attackerkb and want to reproduce vulnerable environments and test exploits. Maybe you want to try out new software. Doesn't matter. share your experiences.

I'm sorry this happened to you. I know it isn't a lot of advice, but hopefully it helps you.

da_667, to random

forgot for a hot second that the env variable for wget is https_proxy not HTTPS_PROXY

da_667, to random

subarashii

da_667,

@voltagex can fiddler be run automatically and generate SSLKEYLOGFILEs and pcaps? If so, I'm sold.

da_667, to random
da_667, to random
da_667, to random

occasionally I log in to my old hotmail/outlook account. my e-mail address has been passed around more times than the communal blunt. So much so, that I'm getting bank of brazil phishing e-mails. Of course, the bad guys are incompetent, so they keep getting their shit removed, and that means a not fun day of no malware for me.

da_667, to random

found a new rack for my ivanti gear

da_667,

by the way, the feds are being told to do this right now: https://www.cisa.gov/news-events/directives/supplemental-direction-v1-ed-24-01-mitigate-ivanti-connect-secure-and-ivanti-policy-secure

da_667, to random

screaming internally as I wait for the clock to strike noon so that I can become of vortex of food consumption

da_667,

I can't say that I enjoy intermittent fasting, but between it and exercise, and a bit of overnight oats, I've lost a few pounds this month.

da_667,

ends continue to justify the means.

da_667,

currently doing 40 minutes of cardio three days a week. hope to be able to push this up a little bit soon. According to the video I'm using, allegedly, this results in three miles. I'd like to bump up and be able to do a full five miles a day of cardio, maybe with a short break between the 40 minute routine, then another 30 minute routine.

da_667, to random

I've seen a pegaman, a pegacar, and everywhere you go there are ghosts, or ghost orbs.

da_667,

@Viss the brainfuckler. mad fouler of thoughts

da_667, to random
da_667, to random
da_667, to random
ryanc, to random

3des5md

da_667,

@ryanc

da_667, to random

the irrefutable evidence that we're approaching the deus ex timeline.

my vision is augmented by a 3500.00 headset

I let a sociopath put a bioelectric chip in my head

da_667,

@0x00string I'm waiting for someone to get RCE on the headset and max headroom every apple headset in existence.

da_667,

@0x00string allegedly it already sold 200,000 units in the US. which goes to show that idiots and their money are easily parted.

da_667,

@0x00string remember the metaverse? remember floating torsos? HOW IN THE FUCK DO YOU HAVE SOMEONE AS SMART AS JOHN CARMACK INVOLVED IN VR AND STILL MANAGE TO MONUMENTALLY FUCK IT UP.

save as => facebook.php

da_667,

@0x00string

when you absorb the cancer

  • All
  • Subscribed
  • Moderated
  • Favorites
  • anitta
  • thenastyranch
  • rosin
  • GTA5RPClips
  • osvaldo12
  • love
  • Youngstown
  • slotface
  • khanakhh
  • everett
  • kavyap
  • mdbf
  • DreamBathrooms
  • ngwrru68w68
  • megavids
  • magazineikmin
  • InstantRegret
  • normalnudes
  • tacticalgear
  • cubers
  • ethstaker
  • modclub
  • cisconetworking
  • Durango
  • provamag3
  • tester
  • Leos
  • JUstTest
  • All magazines
    •