|
https://twitter.com/sheeraf/status/756633801179144192
|
#
?
Jul 23, 2016 13:40
|
|
|
|
| # ? Jun 6, 2024 22:59 |
|
|
quote:Dear Glassdoor User: Bcc is hard.
|
|
#
?
Jul 23, 2016 17:12
|
|
|
nexous posted:Bcc is hard. sorry we basically revealed who the company traitors are and probably got a bunch of people fired, we'll try harder next time
|
|
#
?
Jul 23, 2016 18:49
|
|
|
Parallel Paraplegic posted:sorry we basically revealed who the company traitors are and probably got a bunch of people fired, we'll try harder next time 'perhaps you can look for a new job at glassdoor.com?'
|
|
#
?
Jul 23, 2016 20:44
|
|
|
Snapchat A Titty posted:yo get me outta this SAP prison
|
|
#
?
Jul 24, 2016 05:58
|
|
|
i don't remember seeing this here yet but "How we broke PHP, hacked Pornhub and earned $20,000": https://www.evonide.com/how-we-broke-php-hacked-pornhub-and-earned-20000-dollar/
|
|
#
?
Jul 24, 2016 06:38
|
|
|
Acer Pilot posted:How we broke PHP 
|
|
#
?
Jul 24, 2016 06:54
|
|
|
fins posted:I guess I'll need a tachyonic antitelephone to call them back. I got one
|
|
#
?
Jul 24, 2016 14:52
|
|
|
Acer Pilot posted:i don't remember seeing this here yet but "How we broke PHP, hacked Pornhub and earned $20,000": https://www.evonide.com/how-we-broke-php-hacked-pornhub-and-earned-20000-dollar/ So should I be concerned, or aroused, or both, or what?
|
|
#
?
Jul 24, 2016 15:55
|
|
|
Volmarias posted:So should I be concerned, or aroused, or both, or what? mainly aroused imo because a bug bounty program worked perfectly and the company paid out without any issue
|
|
#
?
Jul 24, 2016 16:28
|
|
|
Blinkz0rz posted:mainly aroused imo because a bug bounty program worked perfectly and the company paid out without any issue weren't they screwing people over initially though and had to revamp?
|
|
#
?
Jul 24, 2016 18:22
|
|
|
DrPossum posted:weren't they screwing people over initially though and had to revamp? the whole site is about people screwing if you know what I mean 
|
|
#
?
Jul 24, 2016 18:30
|
|
|
hackbunny posted:yeah I do this (except it's "lol nice try") but nobody noticed or maybe they were so mad about your sick burn they smashed their keyboard during a fit of rage and, realizing they could not computer anymore today, went outside and had a nice afternoon getting some fresh air and sunshine, perhaps with a nice cold drink
|
|
#
?
Jul 24, 2016 20:59
|
|
|
ok which one of you guys blackmailed this guy https://www.dailyherald.com/article/20160724/news/160729429/ quote:"It has been a tremendous honor and privilege to serve the people of the 81st district for the past four years in Springfield," he said in the statement. "But after some cyber security issues arose, I began to re-evaluate my continued public service."
|
|
#
?
Jul 25, 2016 04:28
|
|
|
https://enigma0x3.net/2016/07/22/bypassing-uac-on-windows-10-using-disk-cleanup/quote:After investigating some default Scheduled Tasks that exist on Windows 10 and their corresponding actions, we found that a scheduled task named “SilentCleanup” is configured on stock Windows 10 installations to be launchable by unprivileged users but to run with elevated/high integrity privileges. 
|
|
#
?
Jul 25, 2016 15:49
|
|
|
I've always had a grudge against MS for that. "It's not a security boundary" it only halts whatever you were doing and demands permission to make changes, that's nothing like a boundary, how silly that people could become confused since it's very similar to virtually every privilege escalation prompt ever "it's for notification", well it doesn't give you information on what's going to be changed so that's worth a wet fart
|
|
#
?
Jul 25, 2016 15:56
|
|
|
Rooney McNibnug posted:https://enigma0x3.net/2016/07/22/bypassing-uac-on-windows-10-using-disk-cleanup/ how worthless can the security recommendations of researchers get? quote:Further, if you would like to monitor for this attack, you could utilize methods/signatures to look for new WMI events as it is required to monitor for new folder creation for this attack to succeed. about this much
|
|
#
?
Jul 25, 2016 16:15
|
|
|
hello small question: what is the best end-to-end encrypted messenger that also has no message history and ideally can be accessed from at least ios and also android but also has a computer/web client ? does this exist?
|
|
#
?
Jul 25, 2016 19:26
|
|
|
Smythe posted:hello small question: what is the best end-to-end encrypted messenger that also has no message history and ideally can be accessed from at least ios and also android but also has a computer/web client ? does this exist?
|
|
#
?
Jul 25, 2016 19:28
|
|
|
i just got off the phone with a channeladvisor rep and apparently they want our admin level credentials to connect to the various channels we're selling on not api keys, not subaccount credentials, straight up i-can-gently caress-with-where-payments-are-going admin credentials oh, an they also want 2% of our gross to duct tape our inventory feeds in a single thing 
|
|
#
?
Jul 25, 2016 19:34
|
|
|
Smythe posted:hello small question: what is the best end-to-end encrypted messenger that also has no message history and ideally can be accessed from at least ios and also android but also has a computer/web client ? does this exist? signal, but you have to clear message history yourself
|
|
#
?
Jul 25, 2016 19:58
|
|
|
tks all
|
|
#
?
Jul 25, 2016 20:03
|
|
|
Whatsapp fits the bill too, even.
|
|
#
?
Jul 25, 2016 20:05
|
|
|
Oddly, the no message history is the more important criteria for me. Kind of like Hangouts "Off the record" mode. I guess that's better for me. My use case is I just would prefer some chats be ephemeral instead of logged forever
|
|
#
?
Jul 25, 2016 20:09
|
|
|
here's a great idea, put your iot poo poo on tor
|
|
#
?
Jul 25, 2016 20:10
|
|
|
The Paranoids now work for Verizon
|
|
#
?
Jul 25, 2016 20:31
|
|
|
Trabisnikof posted:The Paranoids now work for Verizon
|
|
#
?
Jul 25, 2016 20:47
|
|
|
surebet posted:i just got off the phone with a channeladvisor rep and apparently they want our admin level credentials to connect to the various channels we're selling on haha don't do it and report it to the higher ups
|
|
#
?
Jul 25, 2016 20:47
|
|
|
surebet posted:oh, an they also want 2% of our gross to duct tape our inventory feeds in a single thing tell ur boss ill do it for 1% of gross and in half the time
|
|
#
?
Jul 25, 2016 21:41
|
|
|
what im trying to say is call me 
|
|
#
?
Jul 25, 2016 21:41
|
|
|
trust me, i tried lol for reals i'm about to start offering contracts over here, we're running the stupidest expensive-est poo poo at the moment like this bullshit: http://www.teikametrics.com/ like, if we were doing fba, fine, but we're not, and we're basically only using the d3.js powered advertising metrics 1500$ a month 
|
|
#
?
Jul 26, 2016 01:07
|
|
|
wtf kinda business contract is that
|
|
#
?
Jul 26, 2016 02:01
|
|
|
Smythe posted:Oddly, the no message history is the more important criteria for me. Kind of like Hangouts "Off the record" mode. I guess that's better for me. My use case is I just would prefer some chats be ephemeral instead of logged forever
|
|
#
?
Jul 26, 2016 02:29
|
|
|
if I can't see them then they don't exist.
|
|
#
?
Jul 26, 2016 03:41
|
|
|
Bhodi posted:they're logged forever on hangouts, you just can't see them not true  . would be bad for corporate discovery and things otherwise.
|
|
#
?
Jul 26, 2016 05:20
|
|
|
i have a friend who'd like to learn about pentesting / how it's done, any books he can check out that y'all recommend? i learned it myself just by poking around with random tools so i'm not quite sure where to even start when it comes to actual learning materials 
|
|
#
?
Jul 26, 2016 05:41
|
|
|
Parallel Paraplegic posted:i have a friend who'd like to learn about pentesting / how it's done, any books he can check out that y'all recommend? i learned it myself just by poking around with random tools so i'm not quite sure where to even start when it comes to actual learning materials I just picked up "Penetration Testing" from no starch press. It seems extremely basic this far, so I'll be leaving it in the office or something, but it may be a good, gentle, introduction for your, err, "friend".
|
|
#
?
Jul 26, 2016 07:05
|
|
|
http://www.loper-os.org/?p=1662 New blog article from the Phuctor guys, mainly funny because it contains a tale of corporate proxy blocklists.
|
|
#
?
Jul 26, 2016 13:02
|
|
|
surebet posted:i just got off the phone with a channeladvisor rep and apparently they want our admin level credentials to connect to the various channels we're selling on 2%? wow, that's quite a low amount for them as someone who has made a channeladvisor clone for a private project work, all i can say is, good luck (or hire me for a  * 100000)
|
|
#
?
Jul 26, 2016 13:39
|
|
|
|
| # ? Jun 6, 2024 22:59 |
|
|
Bhodi posted:they're logged forever on hangouts, you just can't see them Would love to see any sort of information on this, since Fuzzy Mammal posted:not true
|
|
#
?
Jul 26, 2016 14:37
|
|