|
CLAM DOWN posted:RDP. We use Azure extensively so permit outbound RDP to Azure VMs in our region, Canada Central. So I'm golden
|
# ? May 3, 2019 10:07 |
|
|
# ? May 19, 2024 18:55 |
|
So I'm starting to play with port knocking as a back door method in case my OpenVPN instance dies, pretty neat.
|
# ? May 5, 2019 01:21 |
CLAM DOWN posted:I use a cloud VM for non-work stuff during the day, using my MSDN credits. Hence I can still shitpost here. Otherwise, I would think that hypertracing via dtrace (ie. using dtrace and/or D tracepoints inside a guest from the hypervisor) renders that null and void? CommieGIR posted:So I'm starting to play with port knocking as a back door method in case my OpenVPN instance dies, pretty neat. BlankSystemDaemon fucked around with this message at 11:51 on May 5, 2019 |
|
# ? May 5, 2019 11:48 |
|
D. Ebdrup posted:Is the MSDN credit on an account separate from your work, so that it's just something you randomly spin up that has no connection to your work? Yes.
|
# ? May 5, 2019 16:19 |
|
For the person interested in Ghidra or anyone else really, a presentation on how to use the tool with demos was done @Infiltrate recently https://github.com/0xAlexei/INFILTRATE2019/raw/master/INFILTRATE%20Ghidra%20Slides.pdf
|
# ? May 6, 2019 05:43 |
|
EVIL Gibson posted:For the person interested in Ghidra or anyone else really, a presentation on how to use the tool with demos was done @Infiltrate recently Thanks for that! I hadn't gotten around to playing with it yet, but this will give me the impetus. I've heard that Ghidra doesn't have an internal step-debugger, but that's it's planned. Is this accurate?
|
# ? May 6, 2019 15:40 |
|
According to the slides that's accurate
|
# ? May 8, 2019 02:07 |
|
Anyone use Suricata on ubuntu? I followed some tutorials but I can't get it to detect/log my pings between two VMs.
|
# ? May 8, 2019 13:36 |
|
Does this thread do job postings? Let’s find out. I’m going to need a software developer focused on security soon. Hit me if that’s you. - I’d be your boss’ boss, and you’ll never have as supportive a management chain as this one. not kidding a little. - you need to make good decisions about tooling vs process vs just writing the diffs and tests yourself - someone else handles all the certification/audit poo poo, you just deal with real problems and getting ahead of them - our office is attached to a downtown subway station (line 1, west line best line) - other software developers want to do a good job and will thank you for helping them not gently caress up - when you tell a PM they shouldn’t ship because of a security issue, they listen - strong privacy and tech ethics values, and we spend to honour them - training? conferences? working from Tbilisi for two weeks because you’ve never been there (actual example)? tell your boss how it makes sense and sure. you’re an adult, and we have money - more than a year of runway - actual paying customers - you should be able to tell me about how you fixed a security fuckup and made sure it stayed fixed - we have fired recruiting agencies for bringing us only white dudes for leadership and tech positions - you don’t need to know about AI, but you’ll sure learn about it - talking to people (internal mostly) is part of the job. you can get coached to gently caress and back, but you can’t dodge it - you’re moving to Toronto, but we’re paying relo. Or you can convince me that you can wreck poo poo by being here 1/3 weeks, but my standards are high
|
# ? May 9, 2019 00:18 |
|
Subjunctive posted:Does this thread do job postings? Let’s find out. I have no interest in moving to Toronto but that sounds like a not poo poo security job, hope you find someone good
|
# ? May 9, 2019 17:35 |
|
Raenir Salazar posted:Anyone use Suricata on ubuntu? I followed some tutorials but I can't get it to detect/log my pings between two VMs. I have a box running SELK, which is Suricata running with the ELK stack for reporting and analytics.
|
# ? May 10, 2019 03:16 |
|
https://twitter.com/cryptoishard/status/1126674411753476096 https://twitter.com/cryptoishard/status/1126675625803165696
|
# ? May 10, 2019 03:40 |
|
Absurd Alhazred posted:https://twitter.com/cryptoishard/status/1126674411753476096 Yeah, I figured Symantec was one of the three when I read it this morning. Still not sure who the other two might be.
|
# ? May 10, 2019 04:37 |
|
From what I've seen of Symantec's strategic decisions, their CEO stepping down should maybe move the stock upwards.
|
# ? May 10, 2019 13:51 |
|
Subjunctive posted:From what I've seen of Symantec's strategic decisions, their CEO stepping down should maybe move the stock upwards. Sadly, people are more likely to judge based on appearances and that's a "but won't you please buy our antivirus?" face if I've ever seen one.
|
# ? May 10, 2019 17:09 |
|
Subjunctive posted:From what I've seen of Symantec's strategic decisions, their CEO stepping down should maybe move the stock upwards.
|
# ? May 10, 2019 17:11 |
|
Proteus Jones posted:Yeah, I figured Symantec was one of the three when I read it this morning. Still not sure who the other two might be. Im shooting for McAffee for sure. Then maybe EVIL Gibson fucked around with this message at 17:24 on May 10, 2019 |
# ? May 10, 2019 17:14 |
|
EVIL Gibson posted:Im shooting for McAffee for sure. Then maybe Norton. Norton is Symantec, isn't it?
|
# ? May 10, 2019 17:15 |
|
Proteus Jones posted:Norton is Symantec, isn't it? it is. i just always think they are different.
|
# ? May 10, 2019 17:23 |
|
Snake oil companies getting hacked is always great.
|
# ? May 10, 2019 17:36 |
|
Proteus Jones posted:Yeah, I figured Symantec was one of the three when I read it this morning. Still not sure who the other two might be. this sure gives me a lot of confidence in their ability to run a cloud-only av product with SEP 15
|
# ? May 10, 2019 20:46 |
|
BangersInMyKnickers posted:this sure gives me a lot of confidence in their ability to run a cloud-only av product with SEP 15 Did you have confidence before...?
|
# ? May 10, 2019 22:27 |
|
Who wants my opinions on how all anti-virus engines are hot garbage?
|
# ? May 10, 2019 22:49 |
|
Lain Iwakura posted:Who wants my opinions on how all anti-virus engines are hot garbage? Yess
|
# ? May 10, 2019 23:15 |
|
Lain Iwakura posted:Who wants my opinions on how all anti-virus engines are hot garbage?
|
# ? May 10, 2019 23:16 |
|
Lain Iwakura posted:Who wants my opinions on how all anti-virus engines are hot garbage? You'll need to drop that in the general IT thread if you want an explosion, I think.
|
# ? May 10, 2019 23:24 |
|
Lain Iwakura posted:Who wants my opinions on how all anti-virus engines are hot garbage? Playing the hits, Lain?
|
# ? May 10, 2019 23:26 |
|
Lain Iwakura posted:Who wants my opinions on how all anti-virus engines are hot garbage? I agree they are but tell me more
|
# ? May 10, 2019 23:29 |
|
These days my rants are more limited to how log collection is hot garbage that is necessary and loving awful.
|
# ? May 10, 2019 23:33 |
|
I'd be more interested in hearing the opposite opinion - yes, these scanners are getting exploited all the time and cause severe problems with regularity, but they're great!
|
# ? May 10, 2019 23:33 |
|
Lain Iwakura posted:These days my rants are more limited to how log collection is hot garbage that is necessary and loving awful. I likewise wish to hear this rant as well!
|
# ? May 10, 2019 23:35 |
|
Lambert posted:I'd be more interested in hearing the opposite opinion - yes, these scanners are getting exploited all the time and cause severe problems with regularity, but they're great! Isn't that basically Gartner?
|
# ? May 10, 2019 23:35 |
|
Thanks Ants posted:Isn't that basically Gartner? Look at all of that hot garbage. Schadenboner posted:I likewise wish to hear this rant as well! One day when I am not writing a tonne of documentation on said hot garbage.
|
# ? May 10, 2019 23:51 |
|
Lain Iwakura posted:
I notice that there are exactly three in the "Leaders" quadrant, including Symantec.
|
# ? May 10, 2019 23:53 |
|
I mean, Fortinet is p.trash?
|
# ? May 10, 2019 23:53 |
|
Schadenboner posted:I mean, Fortinet is p.trash? We did rescue someone from them a year ago and she has been an absolutely great addition to our incident response team.
|
# ? May 11, 2019 00:01 |
|
What's your opinion on Azure Sentinel, Lain?
|
# ? May 11, 2019 00:08 |
|
apseudonym posted:Did you have confidence before...? No, but the execs do and they've been handwaving away my concerns so far
|
# ? May 11, 2019 00:28 |
|
CLAM DOWN posted:What's your opinion on Azure Sentinel, Lain? We just had a demo today for this, more next week
|
# ? May 11, 2019 00:29 |
|
|
# ? May 19, 2024 18:55 |
|
CommieGIR posted:We just had a demo today for this, more next week I'm quite literally excited for your take on this.
|
# ? May 11, 2019 00:40 |