Twitter | Search | |
Gabe Edwards
Infosec consultant, writes witty bash one-liners, OSCP/OSCE. 🏳️‍🌈🇨🇦
269
Tweets
201
Following
126
Followers
Tweets
Gabe Edwards Dec 18
is this the last of the free-floating car shares on the hill?
Reply Retweet Like
Gabe Edwards retweeted
Filippo Valsorda Dec 17
Kathryn, , did not bypass code review. She didn't disrupt anyone's work. She didn't target an individual. She didn't violate any policy I'm aware of. She linked to an NLRB notice from an extension that exists to show links to policies. This only makes sense as retaliation.
Reply Retweet Like
Gabe Edwards retweeted
Matthew Garrett Dec 17
Kathryn was on my team. There was zero reason why she should have asked anyone else on the team for authorisation to make changes to this extension. That's not how we do things.
Reply Retweet Like
Gabe Edwards Nov 6
Replying to @gabe_k
Seriously, for weeks I couldn’t walk the one block to QFC without being harassed by her people at the beginning middle and end of that block. If I were allowed to vote I would have voted against her on the basis of leave me the fuck alone.
Reply Retweet Like
Gabe Edwards Nov 2
Ooh, spotted the BOAC 747 across from my gate at LAX. It is a pretty thing.
Reply Retweet Like
Gabe Edwards Sep 30
Replying to @APCbySchneider
wat
Reply Retweet Like
Gabe Edwards Sep 28
I was there at 8:30 tonight looking for a cheap motherboard to help diagnose a hardware problem. Found a sign saying they’re out of stock of motherboards. All motherboards.
Reply Retweet Like
Gabe Edwards Sep 27
Replying to @ericevenchick
Damn, that is awful news. I’m sorry for your loss. It is a really nice idea to do this though.
Reply Retweet Like
Gabe Edwards Sep 19
Checking for consensus in the infosec community: Would you want your front door lock to be controlled by an app and cloud service? This would be online, not just local bluetooth. RTs for reach appreciated.
Reply Retweet Like
Gabe Edwards Sep 17
Replying to @0x00C651E0
"The human race will be utterly wiped from existence, and it's all your fault." Not sure whether this is satire or just plagiarized from the exploit scenarios in an old iSec report.
Reply Retweet Like
Gabe Edwards retweeted
Melanie Ensign Aug 13
Replying to @SethAbramson
Hello. As one of the organizers of DEF CON, I can say that the challenges to securing our elections are no longer technical — we know how to fix it. The problems are now purely political — people in power benefit from these vulnerabilities & don’t want things to get fixed.
Reply Retweet Like
Gabe Edwards Aug 12
Replying to @marcnewlin
They're pushing this in our building too and asking us to sign a lease addendum that includes no liability in case of breach. Also "you agree not to unplug" and "reimburse Owner any costs incurred to plug in and reconnect". No.
Reply Retweet Like
Gabe Edwards retweeted
MalwareTech Aug 12
After 1 hour of looking at my new smart lock, I am now able to remotely unlock every front door in the apartment complex.
Reply Retweet Like
Gabe Edwards retweeted
Eva Aug 5
Most iOS spouseware and stalkerware works by downloading iCloud backups.
Reply Retweet Like
Gabe Edwards Jul 24
Replying to @gabedwrds
That was 4 days ago and it hasn't broken again yet. AMD released new microcode and then pulled it due to other bugs, so no real fix yet. Applications can still call RdRand from userspace so who knows what else will break.
Reply Retweet Like
Gabe Edwards Jul 24
Replying to @gabedwrds
4b. Try to rebuild grub.cfg from the Fedora 29 USB. Nope, that uses RdRand too. It's a complex config and typing in commands at the grub prompt fails. Hours later, piece together a working cfg from the raw /boot/efi partition. Booted with nordrand, grub2-mkconfig works again.
Reply Retweet Like
Gabe Edwards Jul 24
Replying to @gabedwrds
4. Run grub2-mkconfig > grub.cfg add that nordrand arg. Bad move. That probes LVM devices which also uses RdRand. System gets unresponsive (all the blocked kworkers?) and I reboot, but now grub.cfg is empty so grub doesn't know how to load anything. No backup copy.
Reply Retweet Like
Gabe Edwards Jul 24
Replying to @gabedwrds
3. Time passes. I set up Wireguard. It receives a handshake packet and calls get_random_u32 which blocks a kernel worker forever. I forgot to include nordrand in kernel args while configuring VFIO. Need to add that to the default config.
Reply Retweet Like
Gabe Edwards Jul 24
Replying to @gabedwrds
2. Can't mount /home. It's LUKS2 while root is v1. cryptsetup just hangs forever on LUKS2 volumes. Some debugging later, it's getting stuck on a call to libjson-c so we rebuild that without RdRand and all's well.
Reply Retweet Like
Gabe Edwards Jul 24
Replying to @gabedwrds
1. Total failure to boot. We forgot about the known systemd issue. Boot a Fedora 29 live USB, chroot the system and install the patched systemd from . OK, should be fine now?
Reply Retweet Like