One of the easiest ways to be generous is with your words. It doesn't cost anything to say: "Thank you for..." "I love you." "Great job on..." Generosity is about the attitude of your heart, not the size of your bank account

developers be like

This is the way! 🫡

👀

If you will be in Las Vegas for Black Hat or Defcon August 8 - 11, and we haven’t yet made plans to meet. Reach out directly or request a private meeting (please mention my name in the notes) at this link: info.nowsecure.com/BlackHat-2023.… I look forward to meeting with friends and

Frida 16.1.4 is out w/ improved iOS 17 and rootless support, Android compatibility improvements, and some other goodies 🎉 frida.re/news/2023/08/2…

The hate I’m seeing around vscode port forwarding is a losing battle IMO and perhaps a little misguided. Let’s (Infosec) maybe figure out how to make it safer, not how to block it or shame devs or msft. The corp firewall/perimeter is also dead so those filter suggestions may not

Free online training from Cybersecurity and Infrastructure Security Agency and David Weinstein on hardware virtualization w/ VT-x. Love seeing that my Vitriol hypervisor rootkit research is mentioned and included in this! niccs.cisa.gov/education-trai…

Been a minute 😅 I’m sure the content could use some freshening up given it’s more than 10 years old already. Yours and ITL research (and other peers of the time) was inspiring and incredibly exciting area of exploration. Y’all are Wizards and I only tried to capture parts of the

On my way to #DroidCon NY this week. Would be great to connect if you’re in the city this afternoon thru Friday! Let’s chat developer experience, flutter and hybrid frameworks, application security, data privacy and CI/CD topics. #dcnyc23 #Android #mobile

We are excited to announce the MOBILE APP RISK SCORING, a new collaborative effort between industry, academia, and the OWASP® Foundation MAS project. This proposal introduces a novel formula designed to measure the risk associated with mobile apps. OPEN FOR COMMENTS mas.owasp.org/news/

The xz situation is absolutely insane and almost certainly state sponsored. This is an excellent example of a widely used software being maintained by basically one person. Read this web article and then frown and become sad. boehs.org/node/everythin…

Apple people, if you need help with privacy manifests please sign up for Observer here nowsecure.com/nowsecure-obse…

Opening the CFP from the brand new #r2con2024 website radare.org/con/2024

Great talk from Carlos on the nuts and bolts process of reversing mobile apps to find security and privacy issues in the context of the comprehensive OWASP MAS project. Well done!

Hanging on the blue ☁️ thing

Developers rolling up for show and tell session be like… x.com/DamnThatsInter…

Could we be witnesses the first AI trojan horse? An AI that will find a way to do something naughty, even if run fully offline. When will we see such a thing? Is DeepSeek the v0?

8a0ff7f5a28d1721c311911364c68dc80ffba4b4