the democrats stole the erection

16 Mar 2024

Missingno and catching Mew is how I got into cybersecurity, lil pseudo-UAF memory corruptions on 8-bit processors making the understanding so much simpler, and with a very graphic and intuitive manipulation and end effect. Pannenkoek has great stuff on floats, int overflows, etc.

The majority of infosec professionals I’ve worked with have had little passion nor time for infosec outside of what their role entailed. That’s okay, your job doesn’t need to be your identity and vice versa.

Here we go again

It said I had TLS 1.1 enabled on an internal application, High priority issue.

Has anyone made a stylish anime villain character for the Crowdstrike outage yet? Designed a poster or action figure for it? I'm thinking something like "Stricken Lemming"

Ooh yes.

Never even liked tennis anyway.

real

It's great that threat actors are using AI to generate their scripts - it adds comments to every code block, making it so much easier for us to read

Halloween month has arrived, as is tradition a new spooky name must be set

If it's not Wallace and Gromit I don't want to know you tbh

So LNK files have had command lines put in them by worms/other threats for execution/persistence for at least 15 years now, but because someone put a linebreak in there it's now suddenly a zero-day? Guess it's been a slow day at the Trend Micro offices again

I used to be very frustrated when security researchers published detailed vulnerability reports - meticulously describing every step of the discovery process but failing to include indicators of compromise or exploitation. It’s not about writing detection rules for us. Just