🐣 (@sysgoblin) Twitter Tweets • TwiCopy

🐣

@sysgoblin

4 years ago

finally, i can retire

thumb_up_off_alt4

chat_bubble_outline1

repeat0

shareShare

MG

@_mg_

4 years ago

Hey... did anyone notice that PAN 0day was fixed in a version that was released over a year ago? Guess it wasn't easy to notice under all the loud opinions about ethics. 🤣

thumb_up_off_alt199

chat_bubble_outline11

repeat35

shareShare

How can you identify the plane, location, and mission commander in this image? With the intelligence cycle and a little automation! This Verif!cation Quiz Bot challenge from Fiete Stegers | @[email protected] is the hardest one I've tried so far. New #geolocation blog post: nixintel.info/osint/planes-a…

How can you identify the plane, location, and mission commander in this image?

With the intelligence cycle and a little automation!

This <a href="/quiztime/">Verif!cation Quiz Bot</a> challenge from <a href="/fiete_stegers/">Fiete Stegers | @fiete@mastodon.social</a> is the hardest one I've tried so far.

New #geolocation blog post: nixintel.info/osint/planes-a…

thumb_up_off_alt136

chat_bubble_outline7

repeat42

shareShare

Nasreddine Bencherchali

@nas_bench

4 years ago

#log4j thread Detection Ideas + Yara by Florian Roth ⚡️ - gist.github.com/Neo23x0/e4c8b0… Hashes for vulnerable LOG4J versions by Rob Fuller - github.com/mubix/CVE-2021… SIGMA by SOC Prime - tdm.socprime.com/tdm/info/XY2Ej… tdm.socprime.com/tdm/info/4SiOs… Payloads list by GreyNoise - gist.github.com/nathanqthai/01…

thumb_up_off_alt374

chat_bubble_outline3

repeat181

shareShare

🐣

@sysgoblin

4 years ago

rip everyone #log4shell youtu.be/EwwtGN_d8Is

thumb_up_off_alt0

chat_bubble_outline0

repeat0

shareShare

🐣

@sysgoblin

4 years ago

here take this 🤲🍯 #log4shell #log4j github.com/sysgoblin/log4…

thumb_up_off_alt11

chat_bubble_outline0

repeat2

shareShare

Steve Ragan ⚠️

@steved3

4 years ago

I promised I would write a report covering my phishing research in 2021. That report is now live: steved3.io/data/Phishing-… Shout out to @AmandaFGoedde for helping me edit, as well as にのせき for making Miteru, and urlscan.io for creating an awesome tool to help defenders.

thumb_up_off_alt213

chat_bubble_outline11

repeat86

shareShare

🐣

@sysgoblin

4 years ago

just pushed a quick update to emulate apache/elastic, process query params, and accept POST data with a fake login form. have at it! 🍯

thumb_up_off_alt2

chat_bubble_outline0

repeat0

shareShare

🐣

@sysgoblin

4 years ago

log4getaboutit 🤌

thumb_up_off_alt2

chat_bubble_outline0

repeat1

shareShare

🐣

@sysgoblin

4 years ago

well i mean just fuck everything at this point right

thumb_up_off_alt1

chat_bubble_outline0

repeat1

shareShare

ilikecats

@0xilikecats

4 years ago

A few hours ago, a promising token called $YEAR was airdropped. It was set up as a "year in review" of your Ethereum transaction history. Less than an hour ago, this turned into a painful experience for buyers of the token. Here's how $YEAR pulled the rug in under 6 hours🧵 1/

thumb_up_off_alt6,6K

chat_bubble_outline460

repeat2,2K

shareShare

Stephan (@[email protected])

@_firehak

4 years ago

Sad that I got beat to posting about this publicly after looking at it on and off since October, but there are a lot of great details in here about a previously unknown botnet written in Go! Here are some screenshots (including the operator's desktop) I had as well!

thumb_up_off_alt8

chat_bubble_outline0

repeat2

shareShare

jess

@milkjuus

3 years ago

It saddens me to announce that Sukon, the startup I’ve been working on since September 2021, will be shutting down. It was a hard decision, but ultimately it was the right call to make. There were 3 main reasons why Sukon failed, which is what I’ll go over in this thread🧵

thumb_up_off_alt5,5K

chat_bubble_outline92

repeat721

shareShare