Anyone know what sort of interprocess communication takes places when you tell an application via applescript what to do? How do you even go about analyzing something like that on a mac? Just LLDB attached to osascript?🤢The activation energy for learning about macs is so high...

My PR to Matt Creel ‘s chrome cookies bof has been merged into the TrustedSec bofs repo. You can now use it to get all the tokens needed to hit the slack API: github.com/trustedsec/CS-…

Up to 6 miles now!

Exclusive this morning: Kevin Mandia joins ⁦SpecterOps⁩ as chair of the board, he and CEO Dave McGuire talked about the future with me ahead of the announcement cyberscoop.com/kevin-mandia-s…

My commander buddies started making MTG videos! Check it out: youtube.com/watch?v=Iz9kFB…

I believe there is a simple way to remediate #ESC15 Wrote a PowerShell script for it: github.com/JonasBK/Powers… 🧵 1/5

Tired: Fixing memory leaks in your software Wired: Make a push notification about it

why does Hex-Rays SA even give you the option to load an unpacked database? has it ever worked?

Who's tryna trade

nothing about react makes sense

Did you know that CI/CD pipelines are prime targets for adversaries? Join werdhaihai at BSides Portland TOMORROW where he will dive into real-world examples & exploitation techniques using GitHub Actions & provide tips for hardening your CI/CD environments. bsidespdx.org

Fighting kernel AC? Just buy an EV Code Sign Signature they said, it be fun they said ferib.dev/blog/EV-code-s…

LETS GOOOOOOO. Really pumped to talk about game hacking with Nick Powers this weekend

This seems like a pretty big "gotcha" for how ubiquitous bcrypt is! TIL