Olivia
Online
ռɛȶʀɛɖօ
@netredo
Solucionando de forma elegante problemas importantes - CEH-CHFI-DFIR-ISO 27001 Lead Auditor. Todo el contenido con propósitos educativos.
Joined January 2012
718 Following
177 Followers
997 Posts
Algun/a abogado/a que quiera sacar los mocos a .@MediaMarkt_es y .@Glovo_ES? Dos smartwatches que pillo por la app de glovo. Las dos cajas desprecintadas. Una sin reloj dentro. Muy raro todo. https://t.co/usOnwfUynz
To check if your Google Workspace has been compromised by the same tool that compromised Vercel:
1. Go to https://t.co/TpuIOW5Fwg
- This is Google Admin Console > Security > Access and Data Control > API Controls > Manage app access > Accessed Apps
2. Filter by ID = https://t.co/uqJnCqp5Ah
- This is the ID of the compromised OAuth app
If you see an app after filtering, you have potentially been compromised
NASA writes mission-critical flight software in C.
And the rules are absolutely INSANE.
> No recursion. Ever.
> Every loop must have a provable upper bound.
> No dynamic memory allocation after initialization.
> Max ~60 lines per function.
> Minimum 2 assertions per function.
> Every return value must be checked.
> Zero compiler warnings allowed.
> Daily static analysis. Zero warnings there too.
> No function pointers.
> Restricted pointer dereferencing.
This is how they write code at NASA / JPL for mission-critical systems.
Sysinternals is one of best tools for identifying malware on a running Windows system
Digital Forensics, Part 8: Live System Analysis with Sysinternals
https://t.co/JHyYvS3UTt
Who to follow
Yago Hansen
@yadox
Hacker. Living my passion for Cyber Security and fighting everyday to remain upright and true to my principles in this strange society. Happy
viCON
@ViCONgal
Congreso de ciberseguridad en Vigo https://t.co/AcYLXTsgsG
Mr. K
@ClaudioChn
Minesweeper Consultant, Solitaire Expert, Curious Soul. Founder of #DLTCode now DLTCode/Correcta
Hoy @lavozdegalicia se hace eco de mi participación en el comité de expertos que colaboró con la Estrategia de Ciberseguridad de la Ciudad de @Malaga.
#Ciberseguridad #galicia #malaga
https://t.co/JCNC6QnbLx
Mañana hablaré mas de la experiencia en #RootedCON2025, pero decir que orgullosamente soy poseedor de un certificado de asistencia con la garantía de @CHAYANNEMUSIC
Gracias @cibercapitan y viva @rootedcon !
🔐 ¡Hoy los alumnos de 4º de ESO y 1º de Bachillerato han recibido una interesante charla sobre ciberseguridad! 💻
Están un paso más cerca de navegar en internet de forma segura y responsable. 📲✨
#CiberSeguridad #ProtecciónOnline #EducaciónDigital #FuturoSeguro #ESO #bach
😂
cc @JAMESWT_MHT
@afernandesvigo @LaHoraTVE @rtve Como te gusta usurpar mi apellido, menos mal que todo el mundo sabe que tú eres el bueno y yo el guapo 😜
@afernandesvigo @pppua @babylonshowtv @telecincoes @NASA @Carlos_Latre @abelcaballero Enhorabuena por dar a conocer lo que es un hacker de verdad.
2001: Odisea del Carallo, es como @pppua definió anoche en @babylonshowtv de @telecincoes lo de la @NASA xDDDD
Gracias a Paula y a @Carlos_Latre por la mención, este año estará siempre muy unido al gran Carlos.
(@abelcaballero , yo creo que te imita genial xD)
¡ VIVA VIGO !
Ataque DDoS récord: 419 TB de tráfico malicioso en 24 horas
https://t.co/eCmZQW3ZFt
Me and @constrainterror had a very good time talking about drones with the people that came to our @BlackHatEvents arsenal stand.
Thanks everyone for coming. See you next sunday at @defcon @DefconParrot
How I discovered and exploited an unauthenticated SSRF in the Havoc C2 teamserver, allowing attackers to leak origin IPs of teamservers behind redirectors and much more!
https://t.co/SusJlbruSS
https://t.co/cfkI0FVCNr
Pentesting Active Directory - Complete Guide
Part 1:
https://t.co/tP2pUnfHOO
Part 2:
https://t.co/VDnwNJ7Lh5
Part 3:
https://t.co/P7LVn8A9h0
This is an AD pentest tools collection
https://t.co/GxiR6i4M33
Most excellent write up!
Simulating a Akira Ransomware Attack with Atomic Red Team by Sebastian Kandler https://t.co/e7eG4MM6GC
This blog contains useful advice on sshd configuration changes that limit the effectiveness of attacks against CVE-2024-6387 in cases in which you can’t patch or want to harden it against future attacks
The award-winning Qualys Threat Research Unit (TRU) has discovered a critical vulnerability in OpenSSH, designated CVE-2024-6387 and aptly named "regreSSHion." This Remote Code Execution bug grants full root access, posing a significant exploitation risk. https://t.co/uDHHSuzd5f
Most Popular Users
Elon Musk 
@elonmusk
240.2M followers
Barack Obama
@barackobama
119.3M followers
Donald J. Trump
@realdonaldtrump
111.6M followers
Cristiano Ronaldo
@cristiano
109.1M followers
Narendra Modi
@narendramodi
106.9M followers
Rihanna
@rihanna
97.3M followers
NASA
@nasa
92.1M followers
Justin Bieber
@justinbieber
90.6M followers
KATY PERRY
@katyperry
86.9M followers
Taylor Swift
@taylorswift13
80.7M followers
Lady Gaga
@ladygaga
72.3M followers
Kim Kardashian
@kimkardashian
69.4M followers
Virat Kohli
@imvkohli
68.7M followers
YouTube
@youtube
68.6M followers
Bill Gates
@billgates
63.5M followers
The Ellen Show
@theellenshow
62.5M followers
CNN
@cnn
61.9M followers
Neymar Jr
@neymarjr
61.3M followers
X
@x
60.9M followers
Selena Gomez
@selenagomez
60M followers