Josh Summitt

@[email protected]
2 Followers
68 Following
59 Posts
CTO, hacker, builder of modular synths, drinker of all things bourbon. Founder of Faction Security and co-founder of Otto-JS Security:
https://www.factionsecurity.com
https://www.otto-js.com
GitHubhttps://www.github.com/summitt
Otto JavaScript Securityhttps://www.otto-js.com
Faction Securityhttps://factionsecurity.com
Josh SummittNov 26, 2023
The Tor ProjectNov 26, 2023
Don't miss day 1 of our State of the Onion on Wednesday, 29 Nov. Check out the full program here: 🗓️https://blog.torproject.org/state-of-the-onion-2023/
Join us for the State of the Onion 2023 | Tor Project

We will be hosting our annual State of the Onion livestream, a virtual two-day event featuring the Tor Project's different teams presenting highlights of their work from 2023 and what we are excited about in the upcoming year, on November 29th and December 6th from 17:00 - 18:00 UTC.

Josh SummittNov 26, 2023

I'm really excited to announce that I've just open-sourced FACTION, a Security Assessment Collaboration project that I've been working on in the background for many years.

It's mostly geared around #appsec #pentesting and provides many features to make your life easier like:

1. Report Automation and Templating
2. Vulnerability Remediation Tracking
3. APIs and Integrations with other tools
4. Assessment Scheduling
5. Vulnerability Templates

You can check out at the link below!

https://github.com/factionsecurity/faction

GitHub - factionsecurity/faction: Pen Test Report Generation and Assessment Collaboration

Pen Test Report Generation and Assessment Collaboration - factionsecurity/faction

GitHub
Josh SummittOct 9, 2023
Matt BlazeOct 8, 2023

Reminder about Mastodon "private" messages. Aside from not being end-end-encrypted (and so visible to instance administrators), they CC anyone @-mentioned ANYWHERE in the body of the message (not just those listed at the start).

They are now called "private mentions" rather than "private messages", but if you don't fully understand the semantics, this behavior may be unexpected and/or cause unpleasant side effects.

Josh SummittSep 9, 2023
nullagentSep 8, 2023

So, funny story. Every cop's body cam is basically an AirTag. I did a talk at DEFCON explaining how you can detect and ID police body cams with your phone.

https://blog.dataparty.xyz/blog/snoop-unto-them/

#BlackMastodon #TrackThePolice #ACAB

DEFCON 31 - Snoop unto them, as they snoop unto us

The official videos from DEFCON 31 have been posted! Below you can watch our talk “Snoop unto them as they snoop unto you”. The talk, slides, files

Josh SummittAug 15, 2023
OONIAug 15, 2023

This week we're at the Chaos Communication Camp 2023! 🚀

Join us for an OONI hack session to help improve tools for measuring and analyzing internet censorship 🐙

• When: 18th August @ 18:00
• Where: BornHack at #cccamp23
• Info: https://events.ccc.de/camp/2023/hub/camp23/de/event/internet-measurement-data-analysis-hack-session/

#ooni #hackathon

Chaos Communication Camp 2023 - Event OONI Hack Session: Measuring Internet Censorship (@BornHack)

Josh SummittAug 1, 2023
Casey NewtonAug 1, 2023
We might be about to see a whole lot of employees leave X. https://www.platformer.news/p/is-x-bracing-for-exodus
Is X bracing for exodus?

As the company's illegal sign topples from Market Street, a fresh set of employees may also be looking to make the leap

Platformer
Josh SummittAug 1, 2023
BIC Village & CTFJul 29, 2023

Join us for our closing keynote this DEF CON 31!

Our village page has been updated, check out our speakers, CTF & theme!

Link: blacksincyberconf.com/village

#BlacksInCyber #BIC_Village #BIC_CTF #BlacksInCybersecurity #DEFCON31 #DEFCON

Josh SummittAug 1, 2023
Design Thinking! ComicAug 1, 2023
'Disruptor' is a Red Flag for me, now.
Josh SummittAug 1, 2023
hecksevenJul 31, 2023

getting fired up about #defcon y'all. was working on my set last night. it's gonna be rowdy - 20230811 21:00 SYN

#defcon31 #music #party #modular #kosmoModular #syn #synthesizers

Josh SummittJul 30, 2023
DEF CON Hardware Hacking Vill.Jul 30, 2023

Its a bit delayed, and, not done yet... BUT! Our schedule is live!

Come down to the HHV and SSV and enjoy a number of talks, a couple of workshops with hands on, and a whole lot of breaking things!

https://dchhv.org/schedule/schedule.html

Keep an eye on that page for updates!

DC32 Schedule

We make our own use for things

DEF CON Hardware Hacking Village