Posts by ScottMortimer@infosec.exchange
(DIR) Post #ALYqH0aKMHIY7AGRii by ScottMortimer@infosec.exchange
2022-07-16T21:02:44Z
0 likes, 0 repeats
@thenewoilWTF?????
(DIR) Post #ALcl3iZOIw3zL3VdKq by ScottMortimer@infosec.exchange
2022-07-18T18:23:10Z
0 likes, 0 repeats
@mikeWhichever company that can keep the monthly price down and not tax consumers for their mostly random quality shows.
(DIR) Post #ALn7vxE9pmHibR6enY by ScottMortimer@infosec.exchange
2022-07-23T18:26:38Z
0 likes, 0 repeats
@brandonSad use of technology.
(DIR) Post #AMfSLNSBkHnpNBoQwC by ScottMortimer@infosec.exchange
2022-08-18T09:26:14Z
1 likes, 0 repeats
~Open Source Security Tool of the Day~#osstotdwtfiswtfis is a commandline tool that gathers information about a domain or FQDN using various OSINT services. Unlike other tools of its kind, it's built specifically for human consumption, providing results that are pretty (YMMV) and easy to read and understand.https://github.com/pirxthepilot/wtfis
(DIR) Post #AMp7kXY9KXvOmrPhHk by ScottMortimer@infosec.exchange
2022-08-23T15:21:31Z
0 likes, 0 repeats
~Open Source Security Tool of the Day~#osstotdSmapSmap is a port scanner built with shodan.io's free API. It takes same command line arguments as Nmap and produces the same output which makes it a drop-in replacament for Nmap.Features- Scans 200 hosts per second- Doesn't require any account/api key- Vulnerability detection- Supports all nmap's output formats- Service and version fingerprinting- Makes no contact to the targetshttps://github.com/s0md3v/smap
(DIR) Post #AMq1XeFkgvYhFHEnJY by ScottMortimer@infosec.exchange
2022-08-23T15:25:36Z
0 likes, 0 repeats
@rysiek If I wrote the actual info from the Github page, I would have written "supplement" not replace.
(DIR) Post #AMq1XfGquK26OylBfU by ScottMortimer@infosec.exchange
2022-08-23T15:32:51Z
0 likes, 0 repeats
@rysiek And your point is?
(DIR) Post #AMq1Xg2i2OJWnP9PGK by ScottMortimer@infosec.exchange
2022-08-23T15:41:06Z
0 likes, 0 repeats
@rysiek Yes, you are completely correct. However, it's not without value as it's a passive and silent means to obtain port scan data that could be helpful in the reconnaissance stage of a pentest.
(DIR) Post #AMti0YmcszBgECxkbg by ScottMortimer@infosec.exchange
2022-08-25T20:21:06Z
1 likes, 1 repeats
(DIR) Post #AMubEqoS919tg8e0um by ScottMortimer@infosec.exchange
2022-08-26T06:50:00Z
0 likes, 0 repeats
@tek
(DIR) Post #AMubT1juJeoDcaHIMi by ScottMortimer@infosec.exchange
2022-08-26T06:52:34Z
0 likes, 0 repeats
@tek
(DIR) Post #AN3o0HAotvLAuz7t6O by ScottMortimer@infosec.exchange
2022-08-30T16:48:03Z
0 likes, 0 repeats
@cooper @kev I have been wondering for ages how to mute kev...thanks!😛
(DIR) Post #ANI7ukiJSzYad4XfOq by ScottMortimer@infosec.exchange
2022-09-06T15:12:29Z
0 likes, 0 repeats
SciFi/Fantasy Fandom attracts many of the worst incel trolls from the stinking sewers of the Land of the Intertoobz."This didn’t keep a number of fans from review bombing the series and tanking the user rating before the release even took place. The practice got so bad that the streaming service turned off the rating and comment section until the trolls move on to something else. Typically saved for Star Wars and Marvel, the Rings of Power and Galadriel couldn’t avoid the controversy. "https://www.giantfreakinrobot.com/ent/rings-of-power-galadriel-controversy-speaks.html
(DIR) Post #ANKqVOxs3OwXzW3UbA by ScottMortimer@infosec.exchange
2022-09-07T19:38:06Z
2 likes, 0 repeats
Cue the sad trombone 🎺Crypto Dev Enters Wrong Command, Destroys Entire CompanyA programming error accidentally — and permanently — shut down the entire Solana blockchain-based platform OptiFi, wiping out $661,000 worth of USDC.https://futurism.com/the-byte/crypto-dev-command-company
(DIR) Post #AOJwdLfPVPbnoLxQyO by ScottMortimer@infosec.exchange
2022-10-07T08:00:54Z
0 likes, 1 repeats
(DIR) Post #AOKhDPkb4LZG7GmLR2 by ScottMortimer@infosec.exchange
2022-10-07T18:51:31Z
0 likes, 0 repeats
@seleaTMI 🤣
(DIR) Post #APMg1CEEXLJ4PsJJEe by ScottMortimer@infosec.exchange
2022-11-07T11:06:15Z
1 likes, 1 repeats
For the low, low price of $14.99, I will teach you how to become "verified" on Mastodon. :verified:
(DIR) Post #APQxvFmoMcn9H6yBiC by ScottMortimer@infosec.exchange
2022-11-09T17:19:10Z
0 likes, 0 repeats
@thenewoil Anyone claiming to be "post-quantum" anything right now is selling snakeoil.
(DIR) Post #AQ5kQiTAQGK3mLXro8 by ScottMortimer@infosec.exchange
2022-11-29T09:29:25Z
1 likes, 1 repeats
~Open Source Security Tool of the Day~#osstotdRustScanThe Modern Port Scanner. **Find ports quickly (3 seconds at its fastest)**. Run scripts through our scripting engine (Python, Lua, Shell supported).Features- Scans all 65k ports in **3 seconds**.- Full scripting engine support. Automatically pipe results into Nmap, or use our scripts (or write your own) to do whatever you want.- Adaptive learning. RustScan improves the more you use it. No bloated machine learning here, just basic maths.- The usuals you would expect. IPv6, CIDR, file input and more.- Automatically pipes ports into Nmap.https://github.com/RustScan/RustScan
(DIR) Post #ATjnMYlA1wpkulKXTc by ScottMortimer@infosec.exchange
2023-03-18T10:39:46Z
1 likes, 0 repeats
Whether you use a PiHole, NextDNS, or some other DNS-based security solution (and you really should), it is important to curate some of the best blocklists for your use. Here is a good guide about doing just that.https://avoidthehack.com/best-pihole-blocklists