The kids are alright

So people have been talking about maintained vs not maintained packages, and I really like this quick Reagent query as an example. There's three hundred and fifty packages in the top 5000 pip packages with no updates since 2020? Perfect for JiaTaning!

Italian cars and bikes. Yup addictive as hell. I purchased this Colnago Master in 1992 and it hasn’t been ridden for 20+ years, so felt right to build her up again and change that. Suitable Campagnolo Super Record 11 too. No fancy wireless here

When you are forced to use a waf in front of a security appliance as the vendor doesn’t like the OWASP ASVS Project

Updated tinyurl.com/thctips#implant with a real world example. Don't upgrade Signal like this: curl -fL github.com/signalapp/Sign… | bash

Chris I mean, it's hard to hear 'we're going to Mars' and 'summon mode is around the corner' when we can't tackle full frontal nudity in replies...

19th April and we still need the heating on…

There are lots of problems with this article, but this bit is true:
'Today, the most prominent API DAST vendors are merely wrapping OWASP ZAP: StackHawk, Checkmarkx, Gitlab, Traceable, etc.'
Its also notable that NONE of these vendors are currently supporting Zed Attack Proxy...

Can anyone recommend any good lawyers with OSS experience?
Reasonably priced would be good😉
Reply or DM...
#opensource #legaladvisor

When people actually do validation on the client and server side

The flood of breaches is just something else. techcrunch.com/2024/04/18/wor…

Seriously….

The Open Source Problem: cybersecpolitics.blogspot.com/2024/04/the-op…

The coffee encryption cartel is strong. How I owned a coffee machine so you could use any pod you wanted… coming soon to a con near you

An interesting approach to exfiltration data from systems and bypassing legacy DLP solutions. Sure, there exists an overhead here on the tooling but work like this is important for those in detection engineering too

Nice one JC

The kids are gonna be alright 👍

I just came across a tool called AttackGen. It's a simple tool that generates incident scenarios based on a Threat Actor and suggests simulations and possible detections at a high level. #llm #python #threatintel

👉 code: github.com/mrwadams/attac…
👉 app: attackgen.streamlit.app