cybersecurity something, gun enthusiast and educator. World’s Okayest hacker. my thoughts have been written down, sealed in a mason jar and shaken vigorously
The Denver OWASP group is happy to announce the annual SnowFROC conference has been resurrected. Our last in-person conference was right before the pandemic and we have been working hard to bring it back. https://t.co/GLx9Co90gD for tickets and more info
@sec_hub93028 I fully agree with this.
That is why at BSides Las Vegas I have a talk “Four Realities of getting hired into cybersecurity “. I have a slide that addresses what you have above
@sec_hub93028@gabriel1 1) I know what I want and cannot find the person
2) I cannot afford the right person
3) I shift people around because I cannot find the right person
@sec_hub93028 Disagree with @gabriel1 statement. I am a hiring manager and I know what to ask in an interview. Some questions are about knowledge, others disguised to find out about behavior. I give up and settle because
In this video, I break down how a phishing email attack works. By clicking a malicious link, malware can establish a reverse shell, giving an attacker remote control of your machine. I also demonstrate persistence techniques that allow the attacker to maintain long-term access.
DFIR 8 1 Memory Forensics Memory wcry https://t.co/ulKs3rihi7 via @YouTube
As I wrap up this teaching chapter, I’ve been reflecting on what makes a great analyst. It’s never about mastering a tool; it’s about mastering the entire cycle. 🔄
I have just released a new video
@sec_hub93028 Effective ID is who I am logged in as now.
Real ID is used when I start a process.
Saved set ID is if some reason I want to drop my elevated process?
@sec_hub93028 It is not that simple. Where is the server? Is it exposed to the public internet, or behind several layers of security? What type of data? Same with employee? Type of data? Is the employee know they have the access?