Have you tried this mini-ctf? Hints are in the website source code. serialization.crabdance.com:6730 It has multiple stages! Can you capture the flag? Here is a video to get you started on stage 1. youtube.com/watch?v=Lo6myM…

It’s Capstone Day in SEC573 at SANS Miami today! Code all the python!

Here we go again! Please, let me teach you about this vulnerability. It’s free! I explain the issue, how it is exploited, the limitations of the attack vector and show you a site where the vulnerability is patched. Give it a go! serialization.crabdance.com:6730

Don’t miss it. Another awesome Infosec Toolshed episode drops tomorrow.

Are you in the London Area? Are you looking to enhance your skills and automate you work? Come join me and learn how! sans.org/cyber-security…

It's Capstone Day is SEC522 at SANS Nashville! Lots of fun is about to be had.

I'll teach you something new if you do these things: 1) Sign up for this free training event. sans.org/u/1xsj 2) Attend my 30 minute session on Python's Pickle If you already know what I have to say then this little CTF will be easy for you. Can you complete

London pyWars winners!

I’m releasing the 10th episode of the Infosec Toolshed! For this milestone, we're shaking things up a bit. At DEFCON, attendees often play “Spot the Fed,” but is it really possible to judge someone just by their appearance? To find out, we’ll be asking participants at the

⏳ Don't miss this opportunity to enhance your cloud security skills! Join cloud experts Johannes Ullrich and Jason Lam as they help you secure your APIs effectively. Live October 15! ✍️ Register now: buff.ly/3ZvFFYX #SANSCloudAce #CloudSecurity

Last chance to participate in this free CTF! Try it now before I take it down! serialization.crabdance.com:6730 The solution is explained in this video: youtu.be/Kh17Bqbvm-I?si…

What can be better than lambda and Halloween?

🐍🔓 Learn how Python’s pickle tool can be a double-edged sword! Mark Baggett dives into the security risks of using pickle, showing real-life hacker exploits & sharing tips to protect your programs. Don’t miss this eye-opening talk youtu.be/Kh17Bqbvm-I #Python #CyberSecurity

How many of the top fastest growing jobs according to the World Economic Forum require Python skills? Lots of them!! It’s time to get the GPYC certification! sans.org/sec573

.Mark Baggett just did a cool stream about pickle exploitation stuff on Stephen Sims YouTube channel: Off By One Security youtube.com/live/7o8tWd6v2…

Exciting news for the forensics and incident response community! I'm thrilled to announce the 3rd BETA release of SRUM-DUMP v3. This powerful tool leverages Windows SRUM (System Resource Usage Monitor) to uncover malicious process execution over the past 30 days. Key features

🚨 GenAI is powerful—but it’s also expanding your attack surface. Join Seth Misenar as he exposes the hidden risks of LLM and GenAI implementations—and how to build secure, resilient AI systems. 🔗 sans.org/u/1ACQ #SecureYourFortress #AIsecurity #GenAI #LLMsecurity

This is part of a full day of wonderful speakers. All free. Sign up now. See you there!

What do you think of SRUM-DUMP Version 3? Download your free copy here: github.com/MarkBaggett/sr… Here is a write up on the Internet Storm Center. isc.sans.edu/diary/SRUM-DUM…

Delayed flights are the worst. At least it’s headed home so time isn’t crucial.