The Early Access version of Hacking APIs is now available! This is not the final version, but it does have all the chapters and hands-on API hacking lab exercises. hackingapis.com @dftrace The XSS Rat - Proud XSS N00b :-) Jeff Foley Lina Tanya Janca | Shehackspurple Vickie Li d1Zzy

Cactus Con 10 #CTF right around the corner, Feb 4-5. It's the ctf and con are both hybrid and free! Register here: eventbrite.com/e/cactuscon-10… 5h4rk Snipesec @NopResarcher juicyk MikeHacksThings Rayhan0x01 Conehead Azalea Calla CactusCon

Got to play a few of the challenges in the CactusCon CTF last weekend. Really enjoyed the Funware challenge from Conehead and pwneip. Forensic challenge looking at an image, finding the malware, decrypting the files. 0xdf.gitlab.io/2022/02/07/fun…

You're invited to #ZAPCon 2022! ⚡️ Whether you are just getting started, or have a decade of experience with ZAP, ZAPCon will level-up your AppSec skills. 100% Virtual. 100% Free! 🎟️ Snag Your Free Ticket

Taking your first steps in #cybersecurity can be tricky, but we got you covered 😎 Here are a couple of useful tips from some of the best #infosec recruiters, in order to score the job of your dream! hackthebox.com/blog/advice-cy… #HTB #CyberSecurityJobs #Hacking #Careers

Was tired of getting dumpstered in Elden Ring this weekend so I put together a short blog on implementing Cobalt Strike's "Smart Inject" post-ex feature in a few lines of C. passthehashbrowns.github.io/implementing-s…

Threat Intel yesterday vs Threat Intel today

Tonight is my final job hunting livestream at 7pm ET on Twitch. If you're one of the 197+ viewers that have landed new jobs since we started in March 2020, please come back tonight to let us know how things are going. twitch.tv/banjocrashland

Since releasing malmemdetect and providing a list of IOCs i feel more comfortable releasing this. github.com/waldo-irc/YouM… This is a project implementation of x64 gargoyle and sRDI to bypass PeSieve and Moneta in memory as threads. It’s stable, blog post after shmoo.

I made gluten free fruit tarts.

Advice for dating and mushroom harvesting: Don’t ignore the toxic traits just because they’re a fun-gi to be around. 🧵

cursed CTF tactic #912: GPL license your challenges so you can legally request source code from organizers when they steal and reuse it

Thats not cursed that's just a great idea 😂

Who is getting paid to make these puns? He isn't getting paid enough.

Do yall ever wonder if your life is the way it is because you pissed off an ancient deity in a past life?

Ours is a kind and forgiving religion. Neither prescriptive nor proscriptive in our sacraments. You may consume or commune with the flesh of thy Dead Cow as thou choosest, younglings. Blessed be the Bovine. .ooMen

IDOR Checklist

Intel has announced it's "Intel On Demand program". It is a pay-as-you-go program for their CPUs. "Intel's 4th Gen Xeon Scalable Sapphire Rapids processors are equipt with various special-purpose accelerators and security technologies that all customers do not need at all times"

.CrowdStrike had an American Super Bowl LVII commercial this year. This may be the first cyber security product advertisement in Super Bowl history The estimated Super Bowl LVII advertisement commercial cost is $6,500,000 for 30 seconds.