eternalyperplxed

@eternalyperplxed@infosec.exchange
301 Followers
352 Following
25 Posts

Blue teamer dabbling in devops. Star Trek > Star Wars.

Strong believer in Hanlon's Razor https://en.wikipedia.org/wiki/Hanlon%27s_razor

Security/devops engineer and architect at a startup. Wearer of many hats.

https://european-alternatives.eu/categories

Websitehttps://www.securityducttape.com
Show threadeternalyperplxed1d ago
@AmbianceAsunder I get it, and no salt taken. But there's a human instinct to identify with labels like that, so if given an aggressive/ferocious name, it could inflate an attackers ego, whereas a more ridicule driven could keep that at bay. It certainly wouldn't stop people from creating these groups in the first place, but it could certainly provide more enjoyment for defenders.
eternalyperplxed1d ago

While I appreciate creative naming, I think we need to start being more condescending on these ransomware/APT groups. "Scattered Spider"?, nah, how about "Flaccid Frog", "Hobbled Herring", or "Submissive Sheep"?

#infosec #apt

eternalyperplxed5d ago
Disclaimer: Every time I get an unsolicited sales email from a vendor wanting to do an introductory call, and that vendor is already used by my employer, that vendor owes me $20
Show threadeternalyperplxed5d ago
@sycophantic
Love it, nicely done. At some point I also need details on your Meshtastic and ADS/ACARS stuff. I got a Heltec v3 for MT and a ADS-B antenna for my RTL but want to get something stationary mounted higher up and more powerful for both.
Show threadeternalyperplxed5d ago
@sycophantic
Show threadeternalyperplxedJun 24
@FritzAdalis Adorable!
eternalyperplxedJun 24

Me Before: "Oh neat, this program needs an update, they probably fixed some bugs and added new features!"

Me Now: "Oh fuck, this program needs an update. they probably put more ads in and moved features behind a paywall."

eternalyperplxedJun 20
Given Iran's internet shutdown, is it feasible or even possible for the US gov't to shutdown it's domestic internet access given A) that private companies provide the service and B) a significant portion of global internet data runs through or is hosted from the US?
eternalyperplxedJun 18

Can someone explain why a service would need to do full TLS decryption/inspection just to allow for decisioning on the SNI field? (Assuming no encrypted SNI is present)

#aws #infosec #frustration

Show threadeternalyperplxedJun 17
@FritzAdalis If only...