Posts by benmontour@infosec.exchange
(DIR) Post #AasQzR4vRY60mFHDgu by benmontour@infosec.exchange
2023-10-17T23:53:24Z
0 likes, 0 repeats
@mjg59 my brain can’t read reflog and not read it as re-flog.
(DIR) Post #AbPESGOGfdhz71XQNU by benmontour@infosec.exchange
2023-11-02T19:39:36Z
1 likes, 0 repeats
@mttaggart I'd love to see that too. All I've seen is that it was initially designed to help catch something like Process Herpaderping (https://jxy-s.github.io/herpaderping/). As to the details of how it's doing that, a good question indeed.
(DIR) Post #AbPFb7UXE3xu4bFxY0 by benmontour@infosec.exchange
2023-11-02T19:49:06Z
1 likes, 0 repeats
@mttaggart That would make sense given the listed step there. I don't know what else you'd be able to trigger on that wouldn't flood with false positives constantly.
(DIR) Post #AbqH7sQqq5rtmX5fLU by benmontour@infosec.exchange
2023-11-15T20:30:32Z
1 likes, 0 repeats
@mttaggart @g I think the record for ones I've received is 23 pages. You are absolutely correct in that being a red flag in and of itself. 2-3 pages is the sweet spot, unless you're just starting out in your career.
(DIR) Post #Ac2blPXM1H5QjEmPWS by benmontour@infosec.exchange
2023-11-21T19:31:27Z
1 likes, 0 repeats
@mttaggart Absolutely!
(DIR) Post #AcL869RVkNcSGzG7hg by benmontour@infosec.exchange
2023-11-30T17:59:42Z
1 likes, 0 repeats
@mttaggart I haven't seen any attribution or claims from any ransomware groups on this one.
(DIR) Post #AcL8ZyiSC2obgyPGJk by benmontour@infosec.exchange
2023-11-30T18:06:51Z
1 likes, 0 repeats
@AAKL @mttaggart Thanks for the link! Yeah, the lack of claims from any group does seem to agree with this not being ransomware. It seems that a lot of out "outages" were from their IT & Security teams taking things down themselves out of an abundance of caution.
(DIR) Post #AcL8x0PM4K1xbGSAnw by benmontour@infosec.exchange
2023-11-30T18:11:42Z
1 likes, 0 repeats
@mttaggart I could not agree more. I preach to all I can that a properly configured adblocker is probably the single most effective security measure you can impliment on an endpoint.
(DIR) Post #AcT7iZhE2Y6w0l2wym by benmontour@infosec.exchange
2023-12-04T14:23:29Z
1 likes, 0 repeats
@mttaggart Thanks for sharing! Purchased.
(DIR) Post #AcTf6UtGr99oXmhBcO by benmontour@infosec.exchange
2023-12-04T20:46:48Z
1 likes, 0 repeats
@mttaggart @simontsui
(DIR) Post #AcTfODe1iMyCGl11w8 by benmontour@infosec.exchange
2023-12-04T20:52:51Z
1 likes, 0 repeats
@mttaggart @simontsui As much as I love the Picard TNG standard. I've gotta give O'Neill some time in the facepalm spotlight as well.
(DIR) Post #AcTp1bpKddLQ9PA2im by benmontour@infosec.exchange
2023-12-04T22:34:41Z
1 likes, 0 repeats
@mttaggart That’s very plausible with the way things are going.
(DIR) Post #AcU5v4NplYLJuWlai0 by benmontour@infosec.exchange
2023-12-04T22:45:56Z
1 likes, 0 repeats
@mttaggart yeah, probably not the whole kernel. I believe some libraries have already made the change to Rust though.
(DIR) Post #Aco9gvhcQLByVjyPbM by benmontour@infosec.exchange
2023-12-14T18:03:20Z
1 likes, 0 repeats
@mttaggart @deltatux On the same page here too. I like the ability to follow somebody if they chose to be on Threads. But I also don't want to see the volume of noise that Threads generates drowning out everything else. It is nice to be able to keep up with something there without needing to be subjected to having a Meta account or seeing ad’s and such other promoted things (do they do that there? No idea honestly, but I assume so.)
(DIR) Post #AcoAoLCE8ZRXYkO7DU by benmontour@infosec.exchange
2023-12-14T18:18:51Z
1 likes, 0 repeats
@mttaggart @deltatux Thankfully we here outside of Threads won't be subjected to those. While still maintaining the benefit of being able to keep up with activity there.