techhub.social is one of the many independent Mastodon servers you can use to participate in the fediverse.
A hub primarily for passionate technologists, but everyone is welcome

Administered by:

Server stats:

4.7K
active users

#pentester

0 posts0 participants0 posts today
Paco Hope #resist<p>If you made some kind of intercepting HTTP/HTTPS proxy (thinking of a <a href="https://infosec.exchange/tags/pentester" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>pentester</span></a> use case here), you could make it search for these URLs in the streams of HTTP and HTML that are passing through the proxy. Copy down the full URLs and asynchronously issue your own requests for the same URLs and store your own copy of the resulting files. The end user still gets their copy and nobody can tell it's happening. You'd almost certainly be able to do this because the links would surely be valid at the time the proxy sees them, and would work if the proxy immediately issued its request for its own copy.</p><p>The only way to really detect this happening is for the bucket owner to look at the S3 object logs in CloudTrail and see more than 1 fetch of that URL. Of course, someone with network connectivity issues could issue the request more than once. But a systematic pattern of duplicate fetches would indicate hijinks. The end user can't detect <em>this</em> happening to them. But, of course, you're MitM'ing their internet connection, so <strong>that</strong> could be detected.</p><p><a href="https://infosec.exchange/tags/AWS" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>AWS</span></a> <a href="https://infosec.exchange/tags/S3" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>S3</span></a> <a href="https://infosec.exchange/tags/security" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>security</span></a> <a href="https://infosec.exchange/tags/pentest" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>pentest</span></a> <br>4/end</p>
Paco Hope #resist<p>If you know how these things work, I haven't told you anything new or useful yet. Maybe I won't. But the thing I think is important and frequently overlooked is that expiration time. Too short (5 seconds) and your user might not click the link before it expires. Too long (86400 seconds, i.e., one day) and this file is available far longer than you intended.</p><p>So looking at the <code>X-Amz-Expires</code> header in <a href="https://infosec.exchange/tags/AWS" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>AWS</span></a> <a href="https://infosec.exchange/tags/S3" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>S3</span></a> is a good <a href="https://infosec.exchange/tags/security" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>security</span></a> thing, especially if you're doing a <a href="https://infosec.exchange/tags/pentest" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>pentest</span></a> . Those URLs can be passed from device to device (e.g., you can Slack it to a colleague or SMS it to a friend and it will work). So you want to counsel anyone who uses them to try hard to tune the expiration as short as is reasonably practical. That expiration is all of the security control on that link.</p><p>[edit: I left out something important]<br>I see these URLs with <code>86400</code> as the expiration time <strong>a lot and often</strong>. If you're a developer, look at what you're setting them to. If you're a <a href="https://infosec.exchange/tags/pentester" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>pentester</span></a>, this is a thing to warn your customer about.</p><p>3/</p>
Christoff, the human<p><a href="https://oldbytes.space/tags/Introduction" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Introduction</span></a></p><p>Hello, my name is Christoff. </p><p>I live in Illinois, USA, outside the St. Louis area. Below I'll talk about my technology and creative interests, and a bit about me personally. I'm going to hashtag the heck out of this post. </p><p>the whole "deadbeef" thing is the magic number from <a href="https://oldbytes.space/tags/Solaris" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Solaris</span></a> for freed memory. I simply chose .monster TLD because it seemed cool and I like "extended" TLDs. </p><p><a href="https://oldbytes.space/tags/Technology" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Technology</span></a> </p><p>I have been using a OpenBSD, <a href="https://oldbytes.space/tags/NetBSD" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>NetBSD</span></a>, or <a href="https://oldbytes.space/tags/GNU" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>GNU</span></a>/#Linux since the late 1990s as a primary workstation. I used macOS from 2020 to 2025, switching to the <a href="https://oldbytes.space/tags/KDE" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>KDE</span></a> neon distro (KDE plasma is amazing and KDE isn't bloated anymore, yay!).</p><p>My current career is as a <a href="https://oldbytes.space/tags/pentester" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>pentester</span></a> where I break into web applications, IP networks, mobile applications (especially <a href="https://oldbytes.space/tags/Android" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Android</span></a>), and people to their face or over the phone; code <a href="https://oldbytes.space/tags/malware" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>malware</span></a>; write documentation; and enjoy helping clients in a third party contractor/consultant role. I started that job change in 2020, when I earned the <a href="https://oldbytes.space/tags/OSCP" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OSCP</span></a> certification at the height of "<a href="https://oldbytes.space/tags/infosec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>infosec</span></a> twitter" when I did well there.</p><p>Previously I worked for about 20 years as a senior-level programmer, and systems, infrastructure, and database administrator. Burnout was very real and I was extremely bored/unfulfilled. </p><p>Now that programming and sysadmin stuff isn't my career, I find I enjoy programming and tinkering again.</p><p>I am a big fan of NetBSD and always have been. I am not a huge fan of GNU/Linux but I do appreciate things "just working", even if it is full of closed-source binary blobs and other garbage. It was fun in the 1990s.</p><p>I know many programming languages but have been paid professionally to code in <a href="https://oldbytes.space/tags/C" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>C</span></a>, <a href="https://oldbytes.space/tags/Perl" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Perl</span></a>, <a href="https://oldbytes.space/tags/Python" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Python</span></a>, <a href="https://oldbytes.space/tags/PHP" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>PHP</span></a>, <a href="https://oldbytes.space/tags/Java" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Java</span></a>, and <a href="https://oldbytes.space/tags/Groovy" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Groovy</span></a> for big commercial entities like eBay, small companies, and the US government.</p><p>I've maintained 99.99% uptime for a 60MM+ platform for years, including failover and backups (that were regularly tested... you test your failover and backups, right?!). </p><p>I always wanted to be a cool C and low-level programmer, which I thought for the longest time was being a kernel programmer, but now I know that isn't the life for me. </p><p>Emacs is something I've enjoyed since the beginning and I still can't code a <a href="https://oldbytes.space/tags/Lisp" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Lisp</span></a> well. I'd love to be a cool <a href="https://oldbytes.space/tags/lisper" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>lisper</span></a> with <a href="https://oldbytes.space/tags/CommonLisp" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CommonLisp</span></a>, but haven't gotten there yet. I'm on the <a href="https://oldbytes.space/tags/c64" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>c64</span></a> and <a href="https://oldbytes.space/tags/embedded" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>embedded</span></a> <a href="https://oldbytes.space/tags/retrocomputing" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>retrocomputing</span></a> train now.</p><p><a href="https://oldbytes.space/tags/Creative" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Creative</span></a></p><p>For creative stuff, I aim to do a lot but tend to hop around as interests take me. I could use some discipline there (someday?). </p><p>For <a href="https://oldbytes.space/tags/music" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>music</span></a>, I have an electric <a href="https://oldbytes.space/tags/bass" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>bass</span></a> (Fender Jazz) and electric <a href="https://oldbytes.space/tags/guitar" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>guitar</span></a>. I love <a href="https://oldbytes.space/tags/jambands" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>jambands</span></a> (<a href="https://oldbytes.space/tags/GratefulDead" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>GratefulDead</span></a>, <a href="https://oldbytes.space/tags/Phish" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Phish</span></a>, <a href="https://oldbytes.space/tags/Goose" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Goose</span></a>) and that's the type of music I like to play along to. </p><p>For <a href="https://oldbytes.space/tags/art" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>art</span></a>, I like <a href="https://oldbytes.space/tags/acrylic" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>acrylic</span></a> and <a href="https://oldbytes.space/tags/watercolor" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>watercolor</span></a> painting. I rarely do it, but think about it a lot and love it when I do it. I don't have any skill or talent, but that's not the point. It's for me and no one else. </p><p>For <a href="https://oldbytes.space/tags/computing" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>computing</span></a>, I am venturing into <a href="https://oldbytes.space/tags/C64" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>C64</span></a> <a href="https://oldbytes.space/tags/demoscene" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>demoscene</span></a> programming and exploration. Not only was I too poor to get one when I was little but I sorta forgot about it over time. The desire to do cool things in a restricted environment where folks are playing in the sandbox, too, is very exciting and attractive to me. I don't know how to code the <a href="https://oldbytes.space/tags/Commodore64" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Commodore64</span></a> stuff yet, but will! Learning the assembly language (I have zero desire to code in BASIC again and I can just code assembly). </p><p><a href="https://oldbytes.space/tags/Personal" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Personal</span></a></p><p>I live with my soulmate and our five amazing cats in a small town outside St. Louis living a quiet life. Just doing our jobs, taking care of daily life stuff, and enjoying each other and life as much as we can. Ups and downs of life chaos, like anyone else, but we're doing alright! </p><p>We enjoy exploring places within driving distance and there are a lot of places to go to. </p><p>Currently, we're really into playing two-player games together and just started collecting <a href="https://oldbytes.space/tags/boardgames" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>boardgames</span></a>. Right now, we're really digging <a href="https://oldbytes.space/tags/SkyTeam" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SkyTeam</span></a>, <a href="https://oldbytes.space/tags/RoyalGameOfUr" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>RoyalGameOfUr</span></a>, <a href="https://oldbytes.space/tags/ForrestShuffle" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ForrestShuffle</span></a>, <a href="https://oldbytes.space/tags/SentinelsOfTheMultiverse" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SentinelsOfTheMultiverse</span></a>, and this magnet game I don't know the name of. We have <a href="https://oldbytes.space/tags/SpiritIsland" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SpiritIsland</span></a> and <a href="https://oldbytes.space/tags/ArcNova" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ArcNova</span></a> to unwrap and learn. We tried really really hard to get into <a href="https://oldbytes.space/tags/ArkhamHorrorTheCardGame" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ArkhamHorrorTheCardGame</span></a> but the rules are too complicated and confusing, where it felt like we were doing the wrong thing all the time. </p><p>I am 46. I grew up loving Star Wars, Star Trek, <a href="https://oldbytes.space/tags/SciFi" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SciFi</span></a>, reading novels non-stop, horror, and watching movies. I collect classic SciFi books from 1960s and 1970s.</p><p>I would perhaps describe myself as an extremely curious person, that loves <a href="https://oldbytes.space/tags/puzzles" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>puzzles</span></a> and <a href="https://oldbytes.space/tags/mysteries" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>mysteries</span></a>, <a href="https://oldbytes.space/tags/exploration" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>exploration</span></a>, figuring out <a href="https://oldbytes.space/tags/HumanBehavior" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>HumanBehavior</span></a> like I'm an alien studying humans (I'm good at it, it turns out), that has a keen eye for detail, remembering random little things, and a good listener. I'm fairly adaptable and fluid in most things, which works well for me. My brain works differently than a lot of people, and while frustrating a lot of the time for things I don't understand fully, it is me and serves me well in niches. </p><p>Making people laugh makes me happy. I am a <a href="https://oldbytes.space/tags/hacker" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>hacker</span></a> and <a href="https://oldbytes.space/tags/tinkerer" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>tinkerer</span></a>.</p>
Chema Alonso :verified:<p>El lado del mal - ¿Se puede reemplazar a un Pentester con un Agente de IA basado en LLMs? Cómo realizar ataques completos a redes complejas con agentes de Inteligencia Artificial <a href="https://www.elladodelmal.com/2025/05/se-puede-reemplazar-un-pentester-con-un.html" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://www.</span><span class="ellipsis">elladodelmal.com/2025/05/se-pu</span><span class="invisible">ede-reemplazar-un-pentester-con-un.html</span></a> <a href="https://ioc.exchange/tags/AI" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>AI</span></a> <a href="https://ioc.exchange/tags/IA" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>IA</span></a> <a href="https://ioc.exchange/tags/Pentesting" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Pentesting</span></a> <a href="https://ioc.exchange/tags/Hacking" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Hacking</span></a> <a href="https://ioc.exchange/tags/LLM" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>LLM</span></a> <a href="https://ioc.exchange/tags/Pentester" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Pentester</span></a> <a href="https://ioc.exchange/tags/MCP" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>MCP</span></a> <a href="https://ioc.exchange/tags/AgenticAI" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>AgenticAI</span></a> <a href="https://ioc.exchange/tags/RedTeam" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>RedTeam</span></a></p>
Karl Voit :emacs: :orgmode:<p>Who says that <a href="https://graz.social/tags/AI" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>AI</span></a> isn't helping people in real-life situations?</p><p>Consider yourself a bad <a href="https://graz.social/tags/hacker" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>hacker</span></a>, breaking in a company <a href="https://graz.social/tags/SharePoint" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SharePoint</span></a> server. With <a href="https://graz.social/tags/Microsoft" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Microsoft</span></a> <a href="https://graz.social/tags/CoPilot" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CoPilot</span></a>, you're able to determine recent <a href="https://graz.social/tags/pentesting" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>pentesting</span></a> reports, plain text <a href="https://graz.social/tags/passwords" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>passwords</span></a> and other crucial information for your attack right away. As if you get direct help by an insider. Amazing.</p><p>If you find an interesting sensitive file you don't have reading permission for, you can ask CoPilot to show it to you, overriding all the <a href="https://graz.social/tags/security" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>security</span></a> permission measures. Even better: this is not even logged as a file access. No need to clean up afterward.</p><p>Exactly the software you will need for your work. <a href="https://graz.social/tags/Pentester" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Pentester</span></a> and attackers could not have asked for a better tool. Your victims will pay for this handy service themselves. Great to get that kind of important support by Microsoft. 😉 </p><p>Read about that on: <a href="https://www.pentestpartners.com/security-blog/exploiting-copilot-ai-for-sharepoint/" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://www.</span><span class="ellipsis">pentestpartners.com/security-b</span><span class="invisible">log/exploiting-copilot-ai-for-sharepoint/</span></a></p><p><a href="https://graz.social/tags/LLM" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>LLM</span></a> <a href="https://graz.social/tags/fail" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>fail</span></a> <a href="https://graz.social/tags/backdoor" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>backdoor</span></a> <a href="https://graz.social/tags/pentesting" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>pentesting</span></a></p>
Chema Alonso :verified:<p>El lado del mal - Offensive Security: Máster Online en Seguridad Ofensiva del Campus Internacional de Seguridad 2025/2026 (última oportunidad) <a href="https://www.elladodelmal.com/2025/03/offensive-security-master-online-en.html" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://www.</span><span class="ellipsis">elladodelmal.com/2025/03/offen</span><span class="invisible">sive-security-master-online-en.html</span></a> <a href="https://ioc.exchange/tags/Ciberseguridad" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Ciberseguridad</span></a> <a href="https://ioc.exchange/tags/RedTeam" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>RedTeam</span></a> <a href="https://ioc.exchange/tags/Pentest" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Pentest</span></a> <a href="https://ioc.exchange/tags/Pentesting" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Pentesting</span></a> <a href="https://ioc.exchange/tags/Pentester" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Pentester</span></a> <a href="https://ioc.exchange/tags/Master" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Master</span></a> <a href="https://ioc.exchange/tags/Formaci%C3%B3n" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Formación</span></a> <a href="https://ioc.exchange/tags/OffensiveSecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OffensiveSecurity</span></a></p>
Pyrzout :vm:<p>CISA pen-tester says 100-strong red team binned after DOGE canceled contract – Source: go.theregister.com <a href="https://ciso2ciso.com/cisa-pen-tester-says-100-strong-red-team-binned-after-doge-canceled-contract-source-go-theregister-com/" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">ciso2ciso.com/cisa-pen-tester-</span><span class="invisible">says-100-strong-red-team-binned-after-doge-canceled-contract-source-go-theregister-com/</span></a> <a href="https://social.skynetcloud.site/tags/rssfeedpostgeneratorecho" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>rssfeedpostgeneratorecho</span></a> <a href="https://social.skynetcloud.site/tags/TheRegisterSecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>TheRegisterSecurity</span></a> <a href="https://social.skynetcloud.site/tags/CyberSecurityNews" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CyberSecurityNews</span></a> <a href="https://social.skynetcloud.site/tags/TheRegister" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>TheRegister</span></a> <a href="https://social.skynetcloud.site/tags/pentester" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>pentester</span></a></p>
PerfectDark<p>This is my semi-regular <a href="https://mastodon.social/tags/introduction" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>introduction</span></a> to find people! <br>(she/her)</p><p>💜 I work in <a href="https://mastodon.social/tags/infosec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>infosec</span></a> as a <a href="https://mastodon.social/tags/pentester" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>pentester</span></a> </p><p>💜 A big, big believer in <a href="https://mastodon.social/tags/opensource" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>opensource</span></a> + <a href="https://mastodon.social/tags/FOSS" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>FOSS</span></a> </p><p>💜 My library for <a href="https://mastodon.social/tags/GOG" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>GOG</span></a> games is endless, because I believe whole-heartedly in DRM-free gaming</p><p>💜 95% of what I post is about <a href="https://mastodon.social/tags/gaming" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>gaming</span></a> or the <a href="https://mastodon.social/tags/SteamDeck" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SteamDeck</span></a> (it's my happy place!)</p><p>💜 I'm trying to expand my <a href="https://mastodon.social/tags/anime" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>anime</span></a> tastes, with Dan Da Dan being my most recent obsession (suggestions welcomed!)</p><p>💜 My <a href="https://mastodon.social/tags/Kindle" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Kindle</span></a> is utterly Calibre'd </p><p>We should be friends!!!</p>
NorthSec<p>Formation en français, siouplè! 🧐🩵🥐</p><p>La voilà! Une formation de deux jours est conçu pour les débutants en sécurité possédant des connaissances de base en IT, qui repartiront avec des compétences immédiatement applicables. ✨🤩</p><p><a href="https://nsec.io/training/2025-adoptez-la-mentalite-dun-pentester--formation-pratique-de-deux-jours/" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">nsec.io/training/2025-adoptez-</span><span class="invisible">la-mentalite-dun-pentester--formation-pratique-de-deux-jours/</span></a></p><p><a href="https://infosec.exchange/tags/infosec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>infosec</span></a> <a href="https://infosec.exchange/tags/devops" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>devops</span></a> <a href="https://infosec.exchange/tags/pentester" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>pentester</span></a> <a href="https://infosec.exchange/tags/hacking" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>hacking</span></a> <a href="https://infosec.exchange/tags/ctf" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ctf</span></a> <a href="https://infosec.exchange/tags/mtl" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>mtl</span></a></p>
PerfectDark<p>Yet another of my inspirations as a child, to end up working in <a href="https://mastodon.social/tags/infosec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>infosec</span></a> as a <a href="https://mastodon.social/tags/socialengineer" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>socialengineer</span></a> as a <a href="https://mastodon.social/tags/pentester" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>pentester</span></a> and a <a href="https://mastodon.social/tags/hacker" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>hacker</span></a> was the 1999 TV movie - Pirates of Silicon Valley.</p><p>This one was a movie I'd watch with my father when I was little. I loved seeing the old <a href="https://mastodon.social/tags/Apple" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Apple</span></a> VS <a href="https://mastodon.social/tags/Windows" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Windows</span></a> - and I enjoyed knowing what happened 𝘢𝘧𝘵𝘦𝘳𝘸𝘢𝘳𝘥𝘴 even more!</p><p>The quality of acting, the story...and yep even the low budget. I love this movie. Watch it if you've never done so!</p><p><a href="https://mastodon.social/tags/bringbackbeigecomputers" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>bringbackbeigecomputers</span></a></p>
PerfectDark<p>Sandra Bullock starring in 1995's 'The Net' is another STRONG reason I ended up in <a href="https://mastodon.social/tags/infosec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>infosec</span></a> working as a <a href="https://mastodon.social/tags/SocialEngineer" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SocialEngineer</span></a> as a <a href="https://mastodon.social/tags/pentester" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>pentester</span></a> and a <a href="https://mastodon.social/tags/hacker" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>hacker</span></a></p><p>All these movies were way before my time, but it was so nice to see a strong woman as an expert in her field. She's also so beautiful and nerdy. Just what I wanted to be when I grew up!</p><p>Some fun facts from it:</p><p>She plays Wolfenstein 3D in her down-time - a 'beta'</p><p>The phone number used for the pizza scene was the producer's actual number</p>
PerfectDark<p>Angelina Jolie in Hackers is 99.999% of the reason I grew up to be a White Hat <a href="https://mastodon.social/tags/hacker" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>hacker</span></a> and <a href="https://mastodon.social/tags/SocialEngineer" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SocialEngineer</span></a> - a <a href="https://mastodon.social/tags/pentester" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>pentester</span></a> in <a href="https://mastodon.social/tags/infosec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>infosec</span></a></p><p>I wanted to BE her. I am even unashamed to admit I wore a wetsuit top when younger as a fashion choice. Inspired by Kate Libby (cringe!)</p><p>I was wasn't alive for this movie's release, but I love it.<br>The style, the aesthetics, the <a href="https://mastodon.social/tags/music" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>music</span></a> (BEST SOUNDTRACK EVER) are all beyond perfection.</p><p>The world's most 1990s movie ever? Yes.</p><p>HACK THE PLANET</p>
PerfectDark<p>I'm a <a href="https://mastodon.social/tags/pentester" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>pentester</span></a> in the <a href="https://mastodon.social/tags/infosec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>infosec</span></a> world. And sometimes when my target doesn't take the bait that I have so carefully planned out, I end up...</p>
d33p.js<p>Done, but... just out of curiosity.</p><p>Should Pentester cleanup after themself?</p><p>Like, delete all Accounts (they may have created) or remove E-Mail Forwarders from Printers and other Systems?</p><p>Please retoot to reach more people.</p><p><a href="https://infosec.exchange/tags/security" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>security</span></a> <a href="https://infosec.exchange/tags/pentest" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>pentest</span></a> <a href="https://infosec.exchange/tags/pentester" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>pentester</span></a> <a href="https://infosec.exchange/tags/fedihelp" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>fedihelp</span></a> <a href="https://infosec.exchange/tags/redteam" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>redteam</span></a></p>
Pyrzout :vm:<p>OFFAT: OFFensive API Tester OWASP <a href="https://blog.elhacker.net/2025/01/offat-offensive-api-tester-owasp.html" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">blog.elhacker.net/2025/01/offa</span><span class="invisible">t-offensive-api-tester-owasp.html</span></a> <a href="https://social.skynetcloud.site/tags/pentester" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>pentester</span></a> <a href="https://social.skynetcloud.site/tags/hacking" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>hacking</span></a> <a href="https://social.skynetcloud.site/tags/owasp" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>owasp</span></a> <a href="https://social.skynetcloud.site/tags/api" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>api</span></a></p>
Chema Alonso :verified:<p>El lado del mal - BootCamp "Especialista en Ciberseguridad" con garantía de empleo y becas: 10 de Febrero (sólo 4 plazas) <a href="https://www.elladodelmal.com/2025/01/bootcamp-especialista-en-ciberseguridad.html" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://www.</span><span class="ellipsis">elladodelmal.com/2025/01/bootc</span><span class="invisible">amp-especialista-en-ciberseguridad.html</span></a> <a href="https://ioc.exchange/tags/ciberseguridad" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ciberseguridad</span></a> <a href="https://ioc.exchange/tags/bootcamp" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>bootcamp</span></a> <a href="https://ioc.exchange/tags/formaci%C3%B3n" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>formación</span></a> <a href="https://ioc.exchange/tags/empleo" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>empleo</span></a> <a href="https://ioc.exchange/tags/pentester" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>pentester</span></a></p>
Anonymous<p>‎ ‎ ‎ ‎ ‎ ‎ ‎ ‎ ‎ ‎ ‎ ‎ ‎ ‎ ‎💻🎭 hello friends 🎭💻</p><p>✌️🥳</p><p> <a href="https://mastodon.social/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>cybersecurity</span></a> <a href="https://mastodon.social/tags/pentester" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>pentester</span></a> <a href="https://mastodon.social/tags/activism" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>activism</span></a> <a href="https://mastodon.social/tags/legion" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>legion</span></a> <a href="https://mastodon.social/tags/anonymous" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>anonymous</span></a></p>
Marcel SIneM(S)US<p>Für <a href="https://social.tchncs.de/tags/Pentester" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Pentester</span></a> und Sicherheitsforscher: <a href="https://social.tchncs.de/tags/KaliLinux" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>KaliLinux</span></a> 2024.4 mit 14 neuen Tools | Security <a href="https://www.heise.de/news/Fuer-Pentester-und-Sicherheitsforscher-Kali-Linux-2024-4-mit-14-neuen-Tools-10203399.html" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://www.</span><span class="ellipsis">heise.de/news/Fuer-Pentester-u</span><span class="invisible">nd-Sicherheitsforscher-Kali-Linux-2024-4-mit-14-neuen-Tools-10203399.html</span></a> <a href="https://social.tchncs.de/tags/PenTesting" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>PenTesting</span></a> <a href="https://social.tchncs.de/tags/Linux" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Linux</span></a> :tux:</p>
Feu d'jais 🥞<p>J'ai regardé une vidéo récemment, le gars disait avoir "plein d'adresses IP à disposition". Pour faire des tests, faire tourner des bots. Et je me demande comment ça marche ? Combien ça coûte ? Qui lui fournit ce service ?</p><p><a href="https://eldritch.cafe/tags/Sysadmin" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Sysadmin</span></a> <a href="https://eldritch.cafe/tags/Pentester" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Pentester</span></a> <a href="https://eldritch.cafe/tags/RedTeam" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>RedTeam</span></a></p>
Chema Alonso :verified:<p>El lado del mal - The Art of Pentesting: El nuevo libro de 0xWord para formarse como pentester <a href="https://www.elladodelmal.com/2024/10/the-art-of-pentesting-el-nuevo-libro-de.html" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://www.</span><span class="ellipsis">elladodelmal.com/2024/10/the-a</span><span class="invisible">rt-of-pentesting-el-nuevo-libro-de.html</span></a> <a href="https://ioc.exchange/tags/pentest" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>pentest</span></a> <a href="https://ioc.exchange/tags/pentesting" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>pentesting</span></a> <a href="https://ioc.exchange/tags/pentester" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>pentester</span></a> <a href="https://ioc.exchange/tags/hacking" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>hacking</span></a> <a href="https://ioc.exchange/tags/ciberseguridad" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ciberseguridad</span></a> <a href="https://ioc.exchange/tags/redteam" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>redteam</span></a></p>