Olivia
Online
whiskers 🖤
@initinfosec
script kitty | chill techie with an OffSec penchant | not l337 | CRTL, OSCP, CISSP, etc. | opinions my own or from /dev/random | he/him/=^_^=
meatspace
Joined August 2011
2.7K Following
7.8K Followers
18K Posts
Pinned Tweet
I've only followed a few names there I recognized, but hope to utilize the platform more.
Me: https://t.co/uQcJhY2SsG
(thanks @Maliciouslink for admin-ing that instance)
2/2
there is also this list i have saved a while ago where the diff between wininet and winhttp is explained:
wininet + proxy -> needs a valid domain user’s token.
wininet + SYSTEM -> Bad
wininet + service -> bad
wininet -> harder to implement verification
wininet -> socks4
winhttp + service -> good
winhttp + system -> good
winhttp + proxy -> HTTP/1.0 proxy issues
winhttp -> impersonation support
winhttp -> supports kerberos ?
Sources:
- https://t.co/T5NSkQSbSx
- https://t.co/x4Z3aGYRcd
- https://t.co/xtBCdoRHhS
- https://t.co/wlOVBwWTMZ
- https://t.co/JC8N3SFF7a
i will be engaging in orange cat behavior today.
no, i will not elaborate.
Who to follow
▁ ▄ⓟⓗⓡⓔⓒⓚ▄ ▁ 
@thephreck
I do security stuff. Sometimes I'll even talk about it.
Startups - VC - Security - AI - 3D printing
allie🖤✨
@ac1dgoddess
infosec vampire; OG linux&cloud punk🤘🏼@hacknotcrime advocate; @notasockpuppet1 is bae 💍 views are mine.
Bryson 🦄
@brysonbort
🦄 @scythe_io @grimmcyber, Sr Advisor @IST_Org & NatSec Sr Fellow, Co-Fdr @ICS_Village, @c2_matrix co-creator, USMA Science Board, Angel Investor, US Army Offcr
created a BSky acct - we'll see how it goes. Same username as here.
@sailingbikeruk @fekauff @gabsmashh @bluesky curious Q - is blueSky getting adoption similar to or more than mastadon has for infosec type folks & content? I don't check Mastadon as regularly as I probably should, but adoption & activity seemed a bit stagnant. Is BlueSky any better?
"Ideas that are hoarded help no one. Success follows generosity."
-@JamesClear
After a really long time only focused on manual web security stuff, almost everything has started to feel like a QA checklist. There are definitely people doing novel research and dropping crazy bugs, but I think a lot of the big stepping stones require people to build really in-depth stuff (like @CharlieEriksen with @WeaselJs).
When people talk about burnout, I think a lot of it has to do with the fact that there really isn’t a good narrative to tell yourself after becoming reasonably competent and working for a few years on the hands-on hacking part of security.
Let me pick out a team of 3 people and I guarantee you that we could hack pretty much any non-hyper secured target in just a few weeks. Knowing this, it’s a lot less honest to put out work like “we hacked X company” because it’s surprising to no-one who actually does this stuff. It’s getting harder, sure, but it’s still beating the same drum.
I think the collective work of everyone in the bug bounty/pentesting game has definitely massively improved security, but as an individual you just aren’t able to report enough individual vulnerabilities to feel good about the work at a sense of purpose level.
For that reason, I really think the hacking-adjacent stuff is what really becomes important after being in the weeds for so long. I have really enjoyed seeing my friends start companies, big projects, or switch into roles with more responsibility. If you are feeling kind of burnt out with the everyday hacking, I think it’s important to explore the alternatives.
This maybe isn’t super novel and it mirrors how everyone does normal job stuff, but I was stuck in this pit for a better part of this year and think maybe it could help someone. A lot of these thoughts are similar to @gf_256’s Phrack article from earlier this year.
@gabsmashh Not that they're exactly consistent either 🤣
Agree with Justin. Generally, there is a misconception if I get the cert then I should get the job. Training should supplement an existing experience and enable you to think further and develop yourself not to replace experience or used as a promotion tool.
All of the red team courses these days, I do wonder if people are being set up for failure. It’s rarely, if ever, an entry level job and continues to become more and more about development/research as the rate at which EDR and other defensive techniques iterate is much quicker than ever before.
There are several routes to buying evasive tooling, implants, and other research, but that won’t completely plug the development/research gap long term.
"The strategy required to find a great opportunity (lots of saying yes and exploring widely) is different from the strategy required to make the most of a great opportunity (lots of saying no and remaining focused)."
-@JamesClear
"How to connect with others:
Share with someone who wants to listen or listen to someone who wants to share."
-@JamesClear
"Never outsource what you enjoy."
-@JamesClear
You don’t FIND exploits. You build them. You FIND vulnerabilities and exploit them. As an exploit developer that has failed to exploit lots of bugs that look good, the distinction is important 😭
"The reason people get good ideas in the shower is because it's the only time during the day when most people are away from screens long enough to think clearly. The lesson is not to take more showers, but rather to make more time to think."
-@JamesClear
I am giving away 1 seat each for our upcoming bootcamps.
Azure Cloud Attacks (CARTP) - 3rd Feb (9:00 AM ET)
Active Directory Attacks (CRTP) - 4th Feb (9:00 AM ET)
Please Reply, Like and Repost to participate. The winners will be announced on Friday 2nd Feb 2024.
https://t.co/BG69lSjBny
#Azure #Redteam #Pentesting
Last Seen Users on Sotwe
Sensual Suite
Seen from United Kingdom
คู่แท้บ้านๆ 20/28คู่แท้มือใหม่นะ
Seen from Thailand
วิน วิวนวย
Seen from Thailand
بنو القويه💕
VManiak Jilbab
Seen from Indonesia
aşk adamı
Seen from Turkey
محمد القريش
Seen from Colombia
Jam malam
Seen from Indonesia
𝗔𝘀𝗸𝗟𝗶𝘃𝗲𝗿𝗺𝗼𝗿𝗲@𝗮𝘀𝗸𝗹𝗶𝘃𝗲𝗿𝗺𝗼𝗿𝗲
Seen from United States
Ma Chit Su
Seen from United States
Most Popular Users
Elon Musk
@elonmusk
240.2M followers
Barack Obama
@barackobama
119.3M followers
Donald J. Trump
@realdonaldtrump
111.6M followers
Cristiano Ronaldo
@cristiano
109M followers
Narendra Modi
@narendramodi
107M followers
Rihanna
@rihanna
97.3M followers
NASA
@nasa
92.1M followers
Justin Bieber
@justinbieber
90.6M followers
KATY PERRY
@katyperry
86.9M followers
Taylor Swift
@taylorswift13
80.7M followers
Lady Gaga
@ladygaga
72.2M followers
Kim Kardashian
@kimkardashian
69.4M followers
Virat Kohli
@imvkohli
68.6M followers
YouTube
@youtube
68.6M followers
Bill Gates
@billgates
63.4M followers
The Ellen Show
@theellenshow
62.5M followers
CNN
@cnn
61.9M followers
Neymar Jr
@neymarjr
61.2M followers
X
@x
60.9M followers
Selena Gomez
@selenagomez
60M followers