| https://twitter.com/mubix | |
| Blog | https://malicious.link |
| https://linkedin.com/in/mubix | |
| Github | https://github.com/mubix |
Join Kathleen Smith and Rachel Bozeman as they welcome Rob Fuller, a U.S. Marine veteran, cybersecurity leader, and community founder, for a raw look at his journey. From blowing up 300 pounds of C4 as a combat engineer to thriving in cybersecurit...
I know something like this already exists somewhere, and absolutely open to learning better ways:
https://github.com/mubix/Find-WSUS
For finding what might be affected by CVE-2025-59287 or you can use an EDR / OSQuery to find systems with the WSUSService service.
#PRCCDC [Pacific Rim Collegiate Cyber Defense Competition] is looking for some volunteers for Ops, Orange Team, Scoring engine, judges, etc - Fill out the form, get the discord link join the Tuesday meetings:
As stated in the email, we need folks to be trained on the WRCCDC infrastructure since their experts will be remote. Having our own folks F2F who know / are familiar with the system will make PRCCDC run smoothly. Please provide your name, preferred email, preferred mode of communication, and team preference. Once you hit submit, you should receive a confirmation email and the Discord link for the Tuesday night meetings. Please note that Red Team is training separately, please do not share the Discord link with them. Thanks so much!
We are SPOILED this year for presenters, and there’s not greater example of these two:
@rayredacted and @mubix will be presenting at 3:30 in Track 3 and Track 2 respectively.
Rob Fuller will be streamed live on YouTube while Ray will be in person.
https://www.youtube.com/live/DJcSVh9sZ20?si=of2CXZQxYkSgpdaX
Posted this to LinkedIn: https://www.linkedin.com/feed/update/urn:li:activity:7386492126412570624/
#Leaders, let’s talk about the fear of saying “I don’t know.”
Junior employees often have no problem admitting, “I don’t know how to do that.”
But as people move up, that changes.
Many senior folks start to believe they can’t admit when they don’t know something because their credibility feels tied to always having the answer. That’s when fear creeps in. They protect their position… and ironically, create the very reality they’re afraid of.
The areas we get most comfortable in are usually the easiest to automate or replace.
As leaders, we have to break that loop.
In TV, they teach you to exaggerate emotion because when it’s received through a screen, it’s always halved.
The same applies in leadership communication. If you want your team to feel safe being curious, you have to over-communicate that safety.
So when someone says “I don’t know,” celebrate it.
That’s where learning starts. That’s where innovation begins.
Because the safest teams aren’t the ones who know everything they’re the ones who keep asking questions.
#Leaders, let’s talk about the fear of saying “I don’t know.” Junior employees often have no problem admitting, “I don’t know how to do that.” But as people move up, that changes. Many senior folks start to believe they can’t admit when they don’t know something because their credibility feels tied to always having the answer. That’s when fear creeps in. They protect their position… and ironically, create the very reality they’re afraid of. The areas we get most comfortable in are usually the easiest to automate or replace. As leaders, we have to break that loop. In TV, they teach you to exaggerate emotion because when it’s received through a screen, it’s always halved. The same applies in leadership communication. If you want your team to feel safe being curious, you have to over-communicate that safety. So when someone says “I don’t know,” celebrate it. That’s where learning starts. That’s where innovation begins. Because the safest teams aren’t the ones who know everything they’re the ones who keep asking questions.
We’re pleased to have some very experienced speakers during SAINTCON 25, including Rob Fuller @mubix who has decades of experience in the industry from top to bottom. See a true “Lessons Learned” presentation on Thursday afternoon in Ballroom B!
In the Marines, “easy” was never the standard... and somehow, I’ve carried that into a cybersecurity career where I keep finding the hardest possible way to get things done. Sometimes it’s stubbornness, sometimes it’s circumstance, and sometimes it’s just bad luck. In this blunt, story-driven talk, I’ll share the missteps, hard-won insights, and occasional [ok ok.. regular...] faceplants that came from always taking the long road. No sugarcoating, no hero stories, just real lessons in grit, failure, and figuring it out the hard way… so maybe you don’t have to.
Been going through and getting ChatGPT Codex to document all of the functions, arguments and flags that Mimikatz has. It's amazing how many functions that I didn't even know existed in Mimikatz. You can see the results here: https://redteam.wiki/en/postexploitation/mimikatz
SAINTCON