Computer and Network Security (security) group

Joshua Judson Rosen (rozzin@status.hackerposse.com)'s status on Wednesday, 21-Nov-2018 19:55:42 CET Joshua Judson Rosen
Remote profile options...
Conversations with kids, about #umwelt, #superpowers, and #infosec:

"Why are they looking at me?"
"Because they heard you fart."
"Whhhhat do you mean?!?!"
"Hearing people can hear farts."
…
https://www.jwz.org/blog/2018/11/tell-them-to-stop-listening-to-my-farts/
!education !parenting #poop !security
In conversation about 10 months ago from status.hackerposse.com permalink
Attachments
1. Invalid filename.
  
  Tell them to stop listening to my farts
  
  Anna Trupiano: Today in 1st grade one of my Deaf students farted loudly in class and other students turned to look at them. The following is a snippet of a 15 minute conversation that happened entirely in American Sign Language among the group of Deaf students and I. Kid 1: Why are they looking at me? Me: Because they heard you fart. Kid 1: Whhhhat do you mean?!?! Me: Hearing people can hear ...
MMN-o ✅⃠ (mmn@social.umeahackerspace.se)'s status on Wednesday, 10-Oct-2018 17:16:40 CEST MMN-o ✅⃠
- Umeå Hackerspace
- Computer and Network Security
Recently I had to bypass the Factory Reset Protection on a #Nexus6 #Android. I'm astounded how badly #Google engineers implement security considering the reputation of their excellence: https://umeahackerspace.se/2018/10/08/bypassing-frp-factory-reset-protection-on-nexus-6-and-other-relatively-modern-android-phones/ !security !umehack

In conversation about a year ago from web permalink
ghostDancer (ghostdancer@quitter.se)'s status on Sunday, 18-Mar-2018 21:25:35 CET ghostDancer
Remote profile options...
- Computer and Network Security
Build Your Own #Troll Farm https://quitter.se/url/5446043 !security #thetimeswelive
In conversation Sunday, 18-Mar-2018 21:25:35 CET from quitter.se permalink
Attachments
1. Invalid filename.
  
  Build Your Own Troll Farm - Shelly Palmer
  
  from Shelly Palmer
  
  It’s you against the bots and trolls. And, although you may not know it, you are being viciously attacked every day. To help you understand how, I am going to teach you (for informational purposes only) how to weaponize social media, and build your own troll farm. If you can read, copy, and paste, then you can do this. Let’s begin.
kaveh (kaveh@mblog.kavehmoravej.com)'s status on Friday, 02-Mar-2018 23:43:18 CET kaveh
Remote profile options...
- Computer and Network Security
- infosec
Trustico's website was vulnerable to a trivial shell command substitution injection, running as uid=0

https://arstechnica.com/information-technology/2018/03/trustico-website-goes-dark-after-someone-drops-critical-flaw-on-twitter/

!infosec !security
In conversation Friday, 02-Mar-2018 23:43:18 CET from mblog.kavehmoravej.com permalink
Attachments
1. Invalid filename.
  
  Trustico website goes dark after someone drops critical flaw on Twitter
  
  from Ars Technica
  
  Outage comes a day after CEO admitted emailing private keys for 23k HTTPS certs.
kaveh (kaveh@mblog.kavehmoravej.com)'s status on Tuesday, 27-Feb-2018 22:51:29 CET kaveh
Remote profile options...
- Computer and Network Security
- infosec
Harpoon - a tool to automate threat intelligence and open source intelligence tasks.

https://www.randhome.io/blog/2018/02/23/harpoon-an-osint-/-threat-intelligence-tool/

!infosec !security
In conversation Tuesday, 27-Feb-2018 22:51:29 CET from mblog.kavehmoravej.com permalink
Attachments
1. File without filename could not get a thumbnail source.
  
  Harpoon: an OSINT / Threat Intelligence tool · Tek's blog
  
  from Tek's blog
Jens Kubieziel (qbi@quitter.se)'s status on Friday, 23-Feb-2018 21:40:38 CET Jens Kubieziel
Remote profile options...
- Computer and Network Security
- Verschlüsselung
Welche Anleitung für die Einrichtung von #GnuPG würdet ihr Einsteigern in das Thema empfehlen?
!verschluesselung !security

In conversation Friday, 23-Feb-2018 21:40:38 CET from quitter.se permalink
kaveh (kaveh@mblog.kavehmoravej.com)'s status on Friday, 23-Feb-2018 13:42:32 CET kaveh
Remote profile options...
- Computer and Network Security
- infosec
Automated Twitter phishing tool.

https://github.com/omergunal/PoT

!infosec !security
In conversation Friday, 23-Feb-2018 13:42:32 CET from mblog.kavehmoravej.com permalink
Attachments
1. omergunal/PoT
  
  from GitHub
  
  PoT - Phishing on Twitter
kaveh (kaveh@mblog.kavehmoravej.com)'s status on Friday, 23-Feb-2018 13:33:26 CET kaveh
Remote profile options...
- Computer and Network Security
- infosec
PinMe, a novel user-location mechanism that exploits non-sensory/sensory data stored on the smartphone, e.g., the environment's air pressure, along with publicly-available auxiliary information, e.g., elevation maps, to estimate the user's location when all location services, e.g., GPS, are turned off.

https://arxiv.org/abs/1802.01468

!infosec !security

In conversation Friday, 23-Feb-2018 13:33:26 CET from mblog.kavehmoravej.com permalink
kaveh (kaveh@mblog.kavehmoravej.com)'s status on Friday, 16-Feb-2018 20:37:43 CET kaveh
Remote profile options...
- Computer and Network Security
- infosec
SSH-Audit, checks your SSH config and suggests improvements.

https://github.com/arthepsy/ssh-audit

!infosec !security
In conversation Friday, 16-Feb-2018 20:37:43 CET from mblog.kavehmoravej.com permalink
Attachments
1. arthepsy/ssh-audit
  
  from GitHub
  
  ssh-audit - SSH server auditing (banner, key exchange, encryption, mac, compression, compatibility, security, etc)
kaveh (kaveh@mblog.kavehmoravej.com)'s status on Friday, 16-Feb-2018 20:31:38 CET kaveh
Remote profile options...
- Computer and Network Security
- infosec
What will the warrior-guardian of the future look like?

!infosec !security https://mblog.kavehmoravej.com/attachment/2821
In conversation Friday, 16-Feb-2018 20:31:38 CET from mblog.kavehmoravej.com permalink
Attachments
1. 49143203caff9416e237327995f2fbe815ac6eb495717c568aa83e581d25674d.jpg
Jens Kubieziel (qbi@quitter.se)'s status on Thursday, 01-Feb-2018 16:43:07 CET Jens Kubieziel
Remote profile options...
- Computer and Network Security
Call for action: Please send me an encrypted file!

http://yaturl.net/1ce0
!security #encryption
In conversation Thursday, 01-Feb-2018 16:43:07 CET from quitter.se permalink
Attachments
1. File without filename could not get a thumbnail source.
  
  Call for action: Please send me an encrypted file
  
  from Qbi's Weblog
  
  tl;dr: Please encrypt a file and send it to me together with a (short) description, how I can make it readable for me. Everyone is talking about encryption and nobody does it. This is a short summa...
Jens Kubieziel (qbi@quitter.se)'s status on Thursday, 01-Feb-2018 16:23:30 CET Jens Kubieziel
Remote profile options...
- Computer and Network Security
- Verschlüsselung
Aufruf: Verschlüsselt eine Datei und schickt mir diese!
War das leicht oder schwer?
http://yaturl.net/1e1
!verschluesselung !security
In conversation Thursday, 01-Feb-2018 16:23:30 CET from quitter.se permalink
Attachments
1. File without filename could not get a thumbnail source.
  
  Aufruf: Schick mir eine verschlüsselte Datei
  
  from Qbi's Weblog
  
  tl;dr: Bitte verschlüsselt eine Datei und schickt mir diese zusammen mit einer (kurzen) Beschreibung, wie ich die lesbar mache. Alle Welt redet von Verschlüsselung und keiner macht es. So könnte...
Jens Kubieziel (qbi@quitter.se)'s status on Tuesday, 12-Dec-2017 12:35:12 CET Jens Kubieziel
Remote profile options...
- Computer and Network Security
#XSS mit einem #TLS-Zertifikat
https://binaryfigments.com/2017/12/11/dont-trust-all-ssl-tls-certificates/
!security
In conversation Tuesday, 12-Dec-2017 12:35:12 CET from quitter.se permalink
Attachments
1. Don’t trust all SSL / TLS certificates
  
  By Sebastian from Binary Figments
  
  Earlier I did a story about CSR checkers from CA's and their resellers. This was a nice thing to do and an eyeopener for some people. Now, I went for the certificate checkers! I generated my own CA and self-signed certificate and checked some websites with it. In my FakeCA root certificate and the leaf certificate on it, I set some XSS information. A simple JavaScript alert. You easily can do this with OpenSSL for example. So I setup my test site and went testing. It wasn't very difficult to find my first vulnerable website.
Kuro Sawai (kuro@quitter.se)'s status on Friday, 08-Dec-2017 10:30:07 CET Kuro Sawai
Remote profile options...
- Computer and Network Security
Gar nicht so sicher: Immer mehr #Phishing- Webseiten setzen auf #HTTPS https://is.gd/hVFBhE !security HTTPS richtig einschätzen
In conversation Friday, 08-Dec-2017 10:30:07 CET from quitter.se permalink
Attachments
1. Invalid filename.
  
  Ganz und gar nicht sicher: Immer mehr Phishing-Webseiten setzen auf HTTPS
  
  from Security
  
  Sicherheitsforschern zufolge nutzen 2017 ein Viertel aller Phishing-Webseiten HTTPS, um Opfer effektiver zu ködern.
Kuro Sawai (kuro@quitter.se)'s status on Saturday, 02-Dec-2017 11:11:25 CET Kuro Sawai
Remote profile options...
- Computer and Network Security
Kommentar: Weg mit PGP, her mit alltagstauglicher Mail-Verschlüsselung https://is.gd/f85V0W !security
In conversation Saturday, 02-Dec-2017 11:11:25 CET from quitter.se permalink
Attachments
1. Invalid filename.
  
  Kommentar: Weg mit PGP, her mit alltagstauglicher Mail-Verschlüsselung
  
  from heise online
  
  E-Mail, das wichtigste private Kommunikationswerkzeug im Internet, ist kaputt – und keiner regt sich darüber auf. Und auch PGP ist da keine Hilfe, findet Herbert Braun.
Jens Kubieziel (qbi@quitter.se)'s status on Monday, 27-Nov-2017 09:05:58 CET Jens Kubieziel
Remote profile options...
- Linux
- Computer and Network Security
Nutzt ihr #Exim als Mailserver? Macht schnellstens ein Update:
http://seclists.org/oss-sec/2017/q4/325
!security !linux #RCE

In conversation Monday, 27-Nov-2017 09:05:58 CET from quitter.se permalink
Kuro Sawai (kuro@quitter.se)'s status on Wednesday, 15-Nov-2017 14:31:51 CET Kuro Sawai
Remote profile options...
- Computer and Network Security
- Microsoft Windows group
Zero Day Initiative: The November 2017 !Windows !Security Update Review https://is.gd/9qT36m comprehensive table of MS patchday
In conversation Wednesday, 15-Nov-2017 14:31:51 CET from quitter.se permalink
Attachments
1. Invalid filename.
  
  The November 2017 Security Update Review
  
  from Zero Day Initiative
  
  This month has brought a bevy of new security patches from Adobe and Microsoft. Take a break from catching up on the latest Mobile Pwn2Own results as we review the details of the main security patches for November. For those curious, none of the bugs submitted through Mobile Pwn2Own have been patche
Kuro Sawai (kuro@quitter.se)'s status on Monday, 13-Nov-2017 13:59:25 CET Kuro Sawai
Remote profile options...
- Computer and Network Security
- ccc
Manipulating software to rig elections http://qttr.at/1zye via @ccc !security
In conversation Monday, 13-Nov-2017 13:59:25 CET from quitter.se permalink
Attachments
1. Invalid filename.
  
  Meet the Computer Scientist Championing Paper Ballots
  
  from The Atlantic
  
  Barbara Simons believes there is only one safe voting technology.
ghostDancer (ghostdancer@quitter.se)'s status on Saturday, 11-Nov-2017 13:36:22 CET ghostDancer
Remote profile options...
- Computer and Network Security
The best single sentence explanation of what Intel ME is and the recent !security discovery : http://qttr.at/1zwe #hackernews

In conversation Saturday, 11-Nov-2017 13:36:22 CET from quitter.se permalink
ghostDancer (ghostdancer@quitter.se)'s status on Thursday, 02-Nov-2017 09:59:15 CET ghostDancer
Remote profile options...
- Computer and Network Security
Penetration testing has a new meaninghttps://gizmodo.com/if-your-vibrator-is-hacked-is-it-a-sex-crime-1820007951 !security #internetofshit

In conversation Thursday, 02-Nov-2017 09:59:15 CET from quitter.se permalink

Before

Public

Computer and Network Security (security) group

Group actions

Members 2

Admins

Feeds