RE: https://infosec.exchange/@mrs_skelli/116143562711934954
Check out my latest research:
| DEF CON Goon | SOC |
| My website | https://skelli.win/ |
| My Bluesky | https://bsky.app/profile/skelli.win |
Eden π Chaos Wrangler
- 15 Followers
- 23 Following
- 22 Posts
Also [email protected], formerly AppSec Village's Chaos Wrangler. Goon @ SOC
RE: https://infosec.exchange/@mrs_skelli/116114042324894418
Go check out my blog post about hacking Supabase backends ;)
Eden πChaos IncarnateI hacked two websites using a Supabase backend. The results were catastrophic, with thousands of users PII leaked
DEF CON Hotline#DefCon32 Hotline
You can reach #DEFCON staff during normal hours of operation to anonymously report any behavior violating our code of conduct or to find an empathic ear! You can contact us via:
Voice Call, SMS/Text, or Signal:
+1 (725) 222-0934
or Discord: @defconhotline
We hope you have a safe and fun #DefCon32!
Confession: Despite volunteering in some capacity with DEF CON each year, Iβve never really participated in the conference before. Iβm going (mostly) alone this year.
Would love friends and recommendations. My favorite villages definitely have to be aerospace and of course @AppSecVillage but thatβs about the extent of what I know. Also tagging my defcon.social account to boost. @Mrs_Skelli
AdaZebra π©Call for DC32 Hotline volunteers!!! A good candidate might simply be that one person all of their friends come to when they need someone to talk to. This will be a full-time con goon position, working a full shift each of the 4 days of con. Please contact me to interview! π
The DEF CON hotline is an organization that handles calls about code of conduct violations and follows the same structure and teaching as a regional suicide hotline. The reason for such an early volunteer round up, is that we have a training program that will teach you everything you need to know!
Oh no :( Ceasars had a Legionnaires outbreak during DEF CON. Please be aware if you're having any symptoms! I hope everyone stays healthy. I actually got sick at this time with all the symptoms they're mentioning and I'm still sick.
Here's the link to report: https://survey.alchemer.com/s3/7488633/e70472c1f429
Hey folks!
I'm still looking for people looking to submit #CTFs for the @AppSecVillage #CTFSquared competition. Have a CTF lying around that you've never user before? Send it in! You may earn a cash prize of 2k!
A few words of advice to those building and contributing to #projectdiscovery / #nuclei
1. Save yourself from making the same mistake I did. Little did I know that Nuclei cares a lot about the difference between .yml and .yaml
Go with .yaml
2. If you're basing your template off of a CVE, make sure you don't need to be authenticated to exploit it :') Kind of makes your template useless. Learned my lesson with #CVE-2023-30777
Regardless, next template I build I'll know better for next time ^_^
ICYMI Our @defcon #callforpapers is now open at the @AppSecVillage!! buff.ly/3KriXI6 We can't wait to see your ideas for workshops, panels, hands-on activities, etc by May 14. #callforspeakers #cfp #cfs #dc31 #defcon #defcon31 #appsec #apisecurity