|
New year, new Fiendish Dr. Noid, API-T
@
_noid_
Puget Sound
|
|
@DEFCON Organizer (1993 - 2013), @Layer_One Founder, #DC206 Founder, Black Lodge member, Library Card Holder, 3 Time Juror. I killed the dinosaurs.
|
|
|
11.319
Tweetovi
|
784
Pratim
|
3.413
Osobe koje vas prate
|
| Tweetovi |
|
New year, new Fiendish Dr. Noid, API-T
@_noid_
|
7 h |
|
|
||
|
New year, new Fiendish Dr. Noid, API-T
@_noid_
|
3. velj |
|
This would pair well with the screenshots I generated of PowerShell obfuscated payloads. Thanks
|
||
|
|
||
|
New year, new Fiendish Dr. Noid, API-T
@_noid_
|
2. velj |
|
Funny enough, I'm working on a list of logon event types to watch for. One of my usual indicators is attempts at Type 2 logon from service accounts or interactive logon from workstation to workstation. Outside of Help Desk/IT, I consider it anomalous behavior most places
|
||
|
|
||
|
New year, new Fiendish Dr. Noid, API-T
@_noid_
|
2. velj |
|
That's a good one. Funny enough I was just digging through some of my encoded payloads looking for a good "If you see this, shit's happening" example
|
||
|
|
||
|
New year, new Fiendish Dr. Noid, API-T
@_noid_
|
2. velj |
|
I dunno. That would have sealed the deal for me.
|
||
|
|
||
|
New year, new Fiendish Dr. Noid, API-T
@_noid_
|
2. velj |
|
Hey @TheFanPlan maybe you could hook Johnny up with the Batman's Kitchen folks at UW?
|
||
|
|
||
|
New year, new Fiendish Dr. Noid, API-T
@_noid_
|
2. velj |
|
Windows perspective is ideal as most of her students are operating in that environment
|
||
|
|
||
|
New year, new Fiendish Dr. Noid, API-T
@_noid_
|
2. velj |
|
She's going to be talking about what adversary activity looks like. I've got plenty of screenshots from the attackers perspective, but not much from the defenders side of things
|
||
|
|
||
|
New year, new Fiendish Dr. Noid, API-T
@_noid_
|
2. velj |
|
Blue Team peeps. I've got a favor to ask. Do you have any screenshots of adversary activity you could share with me? Redacted where necessary, of course. I'm trying to help a friend out with a presentation they're giving. The person who was supposed to help her is in the hospital
|
||
|
|
||
|
New year, new Fiendish Dr. Noid, API-T
@_noid_
|
2. velj |
|
Cough on everyone
|
||
|
|
||
|
New year, new Fiendish Dr. Noid, API-T
@_noid_
|
2. velj |
|
That's been my experience. Especially old movies that have been "remastered". Prop managers counted on poor film quality to make their gear look right on screen. Friend built a "sandman" pistol. He got to compare it to a real prop from Logan's Run and was amazed his looked better
|
||
|
|
||
| New year, new Fiendish Dr. Noid, API-T proslijedio/la je tweet | ||
|
Corey Quinn
@QuinnyPig
|
1. velj |
|
“YAML is super picky and annoying!” snivels an entire generation who never had to touch a BIND zone file.
|
||
|
|
||
|
New year, new Fiendish Dr. Noid, API-T
@_noid_
|
1. velj |
|
Yeah, "Ray" is a jerk. No, *Ray* I'm not gonna call you granddad, you graduated 5 years after I did.
|
||
|
|
||
|
New year, new Fiendish Dr. Noid, API-T
@_noid_
|
1. velj |
|
It ain't easy, but it's good dishonest work
|
||
|
|
||
|
New year, new Fiendish Dr. Noid, API-T
@_noid_
|
1. velj |
|
I drove past a place the other day called "Good Pho' You" and of course my local favorite: What The Pho'
|
||
|
|
||
|
New year, new Fiendish Dr. Noid, API-T
@_noid_
|
1. velj |
|
I find it amazing that here in 2020 OpenLDAP still transmits everything in plaintext by default. If you want to force TLS, get ready for pain. What? You want to go even further and force strong ciphers and only use TLS 1.2? Buckle up.
Simply astounding in its naivety.
|
||
|
|
||
|
New year, new Fiendish Dr. Noid, API-T
@_noid_
|
1. velj |
|
It's a hell of a feeling. I once used a disposable pen till it ran out of ink. Felt like I'd accomplished something big
|
||
|
|
||
|
New year, new Fiendish Dr. Noid, API-T
@_noid_
|
1. velj |
|
It's where I coral my business contacts so they don't end up on Facebook or Twitter. I use it as a sandbox, basically
|
||
|
|
||
|
New year, new Fiendish Dr. Noid, API-T
@_noid_
|
31. sij |
|
Back when I was at MSFT I used to half-joke about how at any given moment only 10% of that company is actually working. You don't notice the 90% being dead weight because that 10% is kicking ass. If the right people quit at the right time, the company would tank
|
||
|
|
||
|
New year, new Fiendish Dr. Noid, API-T
@_noid_
|
31. sij |
|
Can't tell if Yubikeys or crypto keys for a STU
|
||
|
|
||