Posts
2459
Following
582
Followers
1288
A drunken debugger

Heretek of Silent Signal
repeated

I'll just leave this here for the real programmers.

3
5
0
repeated
repeated

Forward thinking was just the thing that made Multics what it is today.

— Erik Quanstrom

0
3
0
repeated

Santa brought new a blog post!

Handling Arbitrarily Nested Structures with

https://blog.silentsignal.eu/2024/12/06/custom-decoder-for-burp/

0
2
0
repeated

The competition compromises your C2 infrastructure and operator workstations.

"a longstanding campaign orchestrated by the Russian-based threat actor known as 'Secret Blizzard' (also referred to as Turla). This group has successfully infiltrated 33 separate command-and-control (C2) nodes used by Pakistani-based actor, 'Storm-0156.'"

https://blog.lumen.com/snowblind-the-invisible-hand-of-secret-blizzard/

0
2
0
[RSS] URL File NTLM Hash Disclosure Vulnerability (0day) - and Free Micropatches for it

https://blog.0patch.com/2024/12/url-file-ntlm-hash-disclosure.html
0
0
0
repeated

Pentagrid published two tags for (also Swiss AHV numbers) and for . These tags are available via the Hackvertor Tag Store by @garethheyes. Our blog post explains what these tags do and how they can be used. https://www.pentagrid.ch/en/blog/hackervertor-ean13-and-totp-tags-for-web-application-penetration-testing-with-burp/

1
4
0
repeated

CyberKaida (サイバーかいだ)

support for writing plugins! And it includes debugging from VSCode!

I am SO EXCITED! Thank you Ghidra team! 💜💜💜

https://github.com/NationalSecurityAgency/ghidra/commit/478d3e6331803ee3c4adda98a9a97e0acab7e242

1
7
1
repeated
repeated

Cyberpunk when?
(Now. Right now)

6
10
0
repeated

Mastodon isn't perfect.

But the fact a social network exists that is completely free to use,

has no venture capital investors,

has no shareholders to answer to,

has no growth targets,

with a web interface with zero cookies,

and mobile apps with zero trackers at all

with ten thousand server administrators who donate their time for user safety

is - in my opinion - mindbogglingly cool, given the state of the world we live in.

Not everything has to be shit. People make things better.

21
86
3
repeated
Edited 29 days ago

So, apparently targeted advertsing may be coming to ...

https://techcrunch.com/2024/12/05/bluesky-ceo-jay-graber-is-reshaping-social-media-but-advertising-isnt-off-the-table/?guccounter=1

This is not a surprise at all, and has been predicted for a while. Despite the protestations from Bluesky enthusiasts saying that selling domain names was going to do it, the BS business plan never made any sense.

And now they are paying for server costs for 20+ million users and watching their $15M investment from Blockchain Capital et al. dwindle.

Reality bites, and it bites hard.

6
16
0
repeated

I had the privilege of hanging out with j00ru at REcon Montreal after my talk about False File Immutability. I just found out that his latest work, CVE-2024-43452, was directly inspired by my talk and our chat. Feels good man! https://project-zero.issues.chromium.org/issues/42451731

2
4
1
repeated

I'm really proud to present my fully documented source code for Elite on the Commodore 64.

This is the original 1985 source, recently released by Ian Bell, with every single line of code explained.

It’s a thing of beauty. Enjoy!

https://github.com/markmoxon/elite-source-code-commodore-64

12
12
0
repeated

When I first joined Mastodon, it didn't have search, and that was the reason I didn't use it.

It now has search, but can we all admit that it's really bad?

5
1
0
repeated
repeated

If we discover a wireless bug over-the-air, can't we always reproduce it by replaying the attack traffic? Can we create a minimal traffic to reproduce the same attack? All answers in @acsac_conf

Project: https://github.com/asset-group/air-bug-catcher/

0
2
0
repeated

Every(5G)thing Everywhere All at Once : unleashed (https://5ghoul.com) - a family of 10+ 5G implementation vulnerabilities in @qualcomm
and @mediatek cellular baseband modems. Exploits as well as fuzzer is open source.

0
1
0
Is it just me or SonarSource's RSS feed is regularly spamming all their posts as new items somehow?
1
0
0
Show older