Gary Smith

@fl1bbl3
61 Followers
51 Following
85 Posts
Blue team fossil forged in fire and s**t
Gary SmithAug 17, 2019
Ah I see it’s time to treat a social media intern as an Infosec pariah again. ZOMGWTFBBQ you are an [idiot|moron|imbecile] for not knowing how salted hashes work! Was it a *good* answer? Ofc not, but this continual piling on of the pitchfork brigade nonsense is bullshit. Calling out VirginMedia for poor password hygiene I have no issues with, but there is a *human* behind that account; likely a low grade employee who doesn’t set corporate policy. Birdsite bullshit.
Gary SmithMar 16, 2019
@finux you heard from Mike recently? Hasn’t been on bird site for 3 days.
Gary SmithFeb 20, 2019
DilDogFeb 20, 2019

Doin a little open source shit tonight.

'Barrier' is a fork of Synergy 1.9 that is free, since Synergy 2 is an attempt at commercializing the product.

I am adding the ability to constrain the area of the client screen that the server mouse/keyboard has access to. That way you can control part of a remote computer, but limit what parts you can touch. Useful for multi-multimonitor setups where some screen areas might be off limits, or where you use Barrier in conjuction with a KVM.

Gary SmithFeb 14, 2019
PusscatFeb 13, 2019
Anyone looking for pentesting work? We need to hire some full time, non contract, with benefits people!
Gary SmithFeb 9, 2019
DilDogFeb 6, 2019

ssdp too.

this ... --> https://gitlab.com/initstring/evil-ssdp
... should not be so fucking easy.

InitString / evil-ssdp

Spoof SSDP replies to phish for credentials and NetNTLM challenge/response. Creates a fake UPNP device, tricking users into visiting a malicious phishing page. Also detects and exploits XXE 0-day vulnerabilities...

Gary SmithFeb 9, 2019
Show threadDilDogFeb 6, 2019
Here's the thing they don't want u to know and i dont see people exploiting but they could. Windows will automatically install drivers for devices that it sees appear on the network. Via SSDP. This fake thing can make an ancient printer with an out of date driver full of fucking holes magically appear on your network, and yay here's johnny.
Gary SmithApr 13, 2018
@stevelord out of interest, what’s with the gopher resurgence?
Gary SmithMay 4, 2017
The DoctorMay 3, 2017

Does anybody here know #kubernetes really well? I've been stuck on a stupid problem for the last day or so, and kinetic pattern hair loss is setting in.

I have a config map, manually created. This is good. But how do I automatically create the config map when Kubernetes first spins up and starts deploying pods?

#devops #bluh #thesecuritygeekknowseverything #makethesecuritygeekdoit

Gary SmithApr 18, 2017
Lee BrotherstonApr 18, 2017
Yay!! The book is an actual thing now!
https://securitymastod.one/media/uJ-Y48PGyupFYf7VEAA
Gary SmithApr 18, 2017
Munin, Keeper of LoreApr 18, 2017
If there's ever a widespread 'Confluence' breach, there will be -so- many credentials to people's devops infra exposed...