schrnz

@[email protected]
60 Followers
92 Following
11 Posts
infosec enthusiast
Twitter@schrnz
CTO @https://ais-security.de/
Ph.D. fromhttps://cispa.de
Keybasehttps://keybase.io/schrnz
Show threadschrnzSep 1, 2025
@frederik Glückwunsch Fred und viel Spaß und Erfolg im neuen Job!
schrnzNov 15, 2022
Gareth Heyes Nov 15, 2022
Stealing passwords from infosec Mastodon - without bypassing CSP https://portswigger.net/research/stealing-passwords-from-infosec-mastodon-without-bypassing-csp
Stealing passwords from infosec Mastodon - without bypassing CSP

The story of how I could steal credentials on Infosec Mastodon with a HTML injection vulnerability, without needing to bypass CSP. Everybody on our Twitter feed seemed to be jumping ship to the infose

PortSwigger Research
schrnzNov 14, 2022
Dianne HackbornNov 12, 2022

(Reposting a thread from Twitter)

I just ran across the article https://businessinsider.com/facebook-meta-mark-zuckerberg-google-apple-android-compare-2022-10 which I hoped would give good perspective on platforms and VR, but sadly has some major mistakes that make it very misleading. Let's look at those. (1/19)

#Android #VR #Meta

Facebook trying to do what Google did with Android but doing it wrong

Meta's effort to build the metaverse is a way to wrangle back control of consumer data from Apple. Google tried something similar and succeeded.

Insider
Show threadschrnzNov 9, 2022
I said tweets 🤦‍♂️​And I first posted this as public instead of non-listed... so not fully there yet 😅​
Show threadschrnzNov 9, 2022
Inspired by a lot of infosec people announcing their usage of mastodon, I decided to give it a shot as well and until now, it seems kinda fun.
Already significant content here. But I am still figuring out how all of this works, what are best practices in terms of threads, replying, following, boosting, hashtags, etc, etc. Might take some time. Guess replies should not be listed and things like this? Will need some time to get used to this
Show threadschrnzNov 9, 2022
Tweets will be mostly in english for generic infosec content, with potentially some german on top, depending on whether the locals will make their way
into the fediverse as well ;-) #saarland
schrnzNov 9, 2022

Apparently an #introduction is due when joining mastodon, so let's do it:
I've explicitly joined an #infosec related server because that's what I'm doing as a profession *and* it's what I am very passionate about.
Used the birdapp mostly to stay in touch with the infosec community (more consuming than producing though), so I figured I will try something similar here. Let's see if I will become more talkative this time 🤔​

Got into the #security field during my CS masters at #SaarlandUniversity and it was such a fascinating field that I sticked around to do a Ph.D. at the #CISPA Helmholtz Center for Information Security. My thesis revolves around mobile security on the Android platform, but since then I switched gears a little bit. I've been somewhat involved with the local #startup scene since my masters and eventually ended up as the founding-CTO of a small company called #AIS where we focus on #AttackSurfaceMapping atm.

Show threadschrnzNov 8, 2022
@mikewooldridge @defaultvlan same here, immediately recognized people from the infosec community in the local feed. Let's see where this is going
schrnzNov 8, 2022
Let's give this a shot, hey #infosec people 👋​