eqqn

@[email protected]
3 Followers
26 Following
121 Posts

Security guy working in manufacturing, DevOps.
Blog https://eqqn.github.io/

opinions my own

Bloghttp://eqqn.fr
eqqnDec 2
Show threadReed MidekeDec 2

Bonus #AIIsGoingGreat - With the power of #AI, I predict that by 2026 there will be at least 30 "r"s in "year"

(I did this a second time in a new private window because I realized after I closed the first one I should see what the supposedly supporting link was…)

edit: one more for old times sake

eqqnOct 30
Jef PoskanzerOct 30
"Gargoyles serve as human surveillance devices, recording everything that happens around them. Nothing looks stupider; these getups are the modern-day equivalent of the slide-rule scabbard or the calculator pouch on the belt, marking the user as belonging to a class that is at once above and far below human society." - Snow Crash (1992)
eqqnMay 14, 2025
Show threadnixCraft 🐧May 14, 2025
In other words, all job cuts by Google, Microsoft, IBM, Meta, and other big tech directly result from AI investments that have yielded zero returns so far while paying zero money to original book writers, artists, journalists, and open-source developers as they stole their hard work. To compensate for that loss in AI, management came up with an idea to cut workers. Such a master stroke 😂
eqqnMay 5, 2025
Lukasz OlejnikMay 5, 2025
AI vulnerability/bug founds and reports is a huge problem. Curl has banned the use of AI-generated submissions via HackerOne because none of it made any sense, and is a waste of resources and time. "We are effectively being DDoSed. If we could, we would charge them for this waste of our time" https://hackerone.com/reports/3125832
curl disclosed on HackerOne: HTTP/3 Stream Dependency Cycle Exploit

**Penetration Testing Report: HTTP/3 Stream Dependency Cycle Exploit** --- # **0x00 Overview** A novel exploit leveraging stream dependency cycles in the HTTP/3 protocol stack was discovered, resulting in memory corruption and potential denial-of-service or remote code execution scenarios when used against HTTP/3-capable clients such as `curl` (tested on version 8.13.0). This report details...

HackerOne
eqqnFeb 17, 2025
mccFeb 16, 2025

Proposed new Laws of Robotics:

1. A machine must never show an advertisement to a human, or through inaction allow an advertisement to be shown to a human

If I think of a second Law of Robotics I'll let you know

Show threadeqqnOct 10, 2024
I suppose their music classification is as good as 2005 winamp "Various Artists" metadata
eqqnOct 10, 2024

Google somehow decided that term "indie" is offensive and instead describes indie bands as Indonesian.

Bravo

eqqnSep 2, 2024
The year is 2025: OSCP+ requires 2599$/year LearnOne subscription for 3 years, 120 CPE hours renewal and 75$ per CPE/hour training bundles to meet "DoD "requirements""
Show threadeqqnJul 31, 2024
Ethical hacking, red teaming are considered the end goals for many security professionals, but seeing other possibilities in my career and realizing it's not just about compliance is eye-opening.
eqqnJul 31, 2024
I wrote a post about passing CISM certification. If you are an Offensive Security enthusiast and wonder what possibly could a multiple-choice answer non-practical exam bring you, you might be surprised
https://eqqn.github.io/2024/06/03/cism.html
Cism

CISM

eqqn CTF logs