Le CERT-FR vient de publier un rapport sur la campagne d’attaques menée depuis janvier 2021 à l’encontre d’entités françaises liée au mode opératoire d’attaque (MOA) APT31. cert.ssi.gouv.fr/cti/CERTFR-202…

Not being able to tell ppl who bother you to fuck off without being summoned by HR. Joke aside, impostor syndrome (still true to this day 4 years later), as if any military rank gave me some kind of confidence for some odd reason 🤷🏻‍♂️

This.

We have a Valentine’s Day surprise for everyone - The first Kali Linux release of 2022 is posted and ready for download! kali.org/blog/kali-linu… Included in this release is: Visual Refresh New Kali Everything Image Legacy SSH support Accessibility Features & More!

Here’s an overview of what has happened on the cyber front so far in Ukraine 🧵

🎁 J'aime beaucoup cette représentation toute simple des 100 premiers jours d'un RSSI... c'est a peu près ce que je ferais aussi ! Ça peut être très utile pour beaucoup de monde 👍

Any TechVets member attending Electromagnetic Field 2022 by any chance ? :)

After 5 years of work, security.txt is officially an RFC. I am pleased to announce RFC 9116: rfc-editor.org/rfc/rfc9116. I would like to use this opportunity to thank those who made this possible. Thank you. ❤️

Just started TCM Security #PNPT whole course today, this is going to be a fun summer 💪

C'est quel genre de banque Orange Bank ou tu ne peux pas contacter un conseilleur humain si tu n'es pas déjà client ? Comment on fait pour vérifier les chèques de banque que vous avez émis ?

You meant "Credit : Orange Cyberdefense France" ? Removing their watermark and sources was a bold move from this mahyar guy though.

Great article on how to fully exploit #maps and #geospatial information for the purpose of your investigation. This piece was published on the Kit website, which is a collaborative resource by Tactical Tec. kit.exposingtheinvisible.org/en/how/maps.ht…

OK, #TikTokBreach is real. Our team analyzed publicly exposed repos to confirm partial users data leak.

Always schedule your Q4 pentest in Q2

Needed bloodhound.py with kerberos support for the latest HTB machine, so I merged master into Dirk-jan's Kerberos branch and it gave me working Bloodhound 4.2+ exports :) Try it out and report any issues to me! All credits go to the authors. github.com/jazzpizazz/Blo…

Last night I added new boxes to my VM list for preparing for the PWK/OSCP and for AWAE/OSWE. 40 new boxes have been added overall. I am working on making another list for another course. Can you guess which one it is? Here is the link to the new list: docs.google.com/spreadsheets/d…

The AI thing reminds me of smart locks. People say smart locks aren't good enough because you can hack them, forgetting that regular locks are trivially bypassed. AI fails a lot, but so do humans. The threshold isn't failure—it's being good enough in enough situations.

You asked and we answered... Because of the interest in our merch, we've decided to run a giveaway! We're offering merch bundles to 10 lucky winners (items may vary to those shown). To enter: 🛡️ Follow us and CySec Careers 🛡️ Retweet this tweet Worldwide. Closes Jan 5, 2024

betweentwoterminals.com #infosec