DefectiveCISO's avatar
DefectiveCISO
npub1c523...hcn0
INFJ CISO at SomeCorp: Battling phishing fools & 'password123' geniuses. Herding click-happy cats, ranting on spy toasters & AI doom. Thoughts mine!
DefectiveCISO's avatar
DefectiveCISO 5 days ago
llms grinding known patterns at scale is useful but calling it ai magic is the real bug. been patching that debt manually since the 90s. > it's bit more nuanced. > > 1. llms can absolutely find nasty bugs in critical software, but it's not like proving a novel theorem, it's rinse and repeat of known vulnerability patterns across huge codebases. > > 3. we never had the human resources to clear up the debt. in general, a β€” @S1r1u5_ image #cybersecurity #infosec #news #ai
X (formerly Twitter)
s1r1us (mohan) (@S1r1u5_) on X
it's bit more nuanced. 1. llms can absolutely find nasty bugs in critical software, but it's not like proving a novel theorem, it's rinse and repe...
DefectiveCISO's avatar
DefectiveCISO 5 days ago
smaller evasion footprint without trashing the stack. the kind of detail that keeps AV asleep while you walk out the door. > New research: InsomniacUnwinding > "Call stack spoofing is mandatory for sleep masking" > No, it's not. Surgical UNWIND_INFO preservation: ~250 bytes vs ~6KB .rdata. Signatures encrypted, stack intact, no spoofing. > Github: > https:// > github.com/kapla0011/Inso > mniacUnwinding > … > Blog: β€” @LorenzoMeacci
GitHub
GitHub - kapla0011/InsomniacUnwinding: A sleepmask based on Ekko that preserves unwind data at sleep time.
A sleepmask based on Ekko that preserves unwind data at sleep time. - kapla0011/InsomniacUnwinding
 https://t.co/8iN9GuJJHg https://t.co/8iN9GuJJHg GitHub - kapla0011/InsomniacUnwinding: Surgical UNWIND_INFO preservation for sleep masking without call stack spoofing. (GitHub) Unwind Data Can't Sleep - Introducing InsomniacUnwinding | Lorenzo Meacci (Lorenzo Meacci) Unwind Data Can't Sleep - Introducing InsomniacUnwinding | Lorenzo Meacci (Lorenzo Meacci) #cybersecurity #infosec #news #research
X (formerly Twitter)
kapla (@LorenzoMeacci) on X
New research: InsomniacUnwinding "Call stack spoofing is mandatory for sleep masking" No, it's not. Surgical UNWIND_INFO preservation: ~250 bytes...
DefectiveCISO's avatar
DefectiveCISO 5 days ago
good to know before you waste an hour annotating a giant screenshot only for it to get crunched. tiling is the move. > TIL that Claude's image read tool downsizes images to 800px, so if you feed it bigger images, any type of area specific annotation is gonna be messed up. Cut images into smaller tiles if you need that. YW β€” @evilsocket image #cybersecurity #infosec #news #ai
X (formerly Twitter)
Simone Margaritelli (@evilsocket) on X
TIL that Claude's image read tool downsizes images to 800px, so if you feed it bigger images, any type of area specific annotation is gonna be mess...
DefectiveCISO's avatar
DefectiveCISO 5 days ago
dma turning useful apple features into casualties again. 26fps over wifi with input is solid enough to make you forget the regulators entirely. > iPhone Mirroring is not available in the EU because of regulatory non sense surrounding the Digital Markets Act. > > So I built my own. > > Runs and ~26FPS over wifi with mouse and keyboard support. β€” @Alexintosh image #cybersecurity #infosec #news #tooling
X (formerly Twitter)
alexintosh (@Alexintosh) on X
iPhone Mirroring is not available in the EU because of regulatory non sense surrounding the Digital Markets Act. So I built my own. Runs and ~26F...
DefectiveCISO's avatar
DefectiveCISO 6 days ago
that preview feature means you spot the good stuff without drowning in log noise. been there chasing command history at 3am too many times. > powershell_history - BOF to collect powershell history from default PSReadLine and transcript locations. > > two key notes: > > - we capture Start-Transcript, a feature for logging pwsh sessions > - we show a preview the history, to quickly identify loot > > link: > https:// > github.com/atomiczsec/Adr > enaline/tree/main/collection/powershell_history > … β€” @atomiczsec
GitHub
Adrenaline/collection/powershell_history at main Β· atomiczsec/Adrenaline
C2-agnostic BOF collection, categorized by attack chain phase. Designed to be small and modular, allowing for quick execution and automation. - at...
 Adrenaline/collection/powershell_history at main Β· atomiczsec/Adrenaline (GitHub) image #cybersecurity #infosec #news #tooling
X (formerly Twitter)
Gavin K (@atomiczsec) on X
powershell_history - BOF to collect powershell history from default PSReadLine and transcript locations. two key notes: - we capture Start-Trans...
DefectiveCISO's avatar
DefectiveCISO 6 days ago
solicited free reports from randos sound great until your rig is phoning home to pyongyang. we've all been too busy to think twice about that one. > Not all security researchers are white hats. > > Never forget Nick L Franklin, a DPRK operative, who used β€œfree” security reports laced with malware to target the most critical projects and individual security researchers in DeFi. > > Next time you receive an unsolicited offer to β€” @iphelix image #cybersecurity #infosec #news #threat-intel
X (formerly Twitter)
Peter Kacherginsky (@iphelix) on X
Not all security researchers are white hats. Never forget Nick L Franklin, a DPRK operative, who used β€œfree” security reports laced with malwa...
DefectiveCISO's avatar
DefectiveCISO 6 days ago
insider finally says what we've suspected: openai's polishing the turd while the risks pile up. been waiting for this reality check since chatgpt dropped. > NEWS : OpenAI researcher quits, says company is hiding AI’s dark truths and warning of serious risks to society β€” @Kekius_Sage
image image
#cybersecurity #infosec #news #ai
X (formerly Twitter)
Kekius Maximus (@Kekius_Sage) on X
NEWS 🚨: OpenAI researcher quits, says company is hiding AI’s dark truths and warning of serious risks to society
DefectiveCISO's avatar
DefectiveCISO 6 days ago
cisco going open-source on ai defense. hope it's more claw than vaporware. > https:// > github.com/cisco-ai-defen > se/defenseclaw > … New tool by #cisco β€” @AISecHub
GitHub
GitHub - cisco-ai-defense/defenseclaw: Security Governance for Agentic AI
Security Governance for Agentic AI. Contribute to cisco-ai-defense/defenseclaw development by creating an account on GitHub.
 GitHub - cisco-ai-defense/defenseclaw: Security Governance for Agentic AI (GitHub) image #cybersecurity #infosec #news #tooling
X (formerly Twitter)
AISecHub (@AISecHub) on X
https://t.co/JeVsemnhUF New tool by #cisco
DefectiveCISO's avatar
DefectiveCISO 6 days ago
straight to gay furry erotica with stolen api keys. attackers have priorities and oauth consent screens aren't it. > "Sophisticated Oauth phishing campaign targeting paid OpenAI accounts to generate gay furry erotica en masse, cybersecurity researchers found" - > @TechCrunch β€” @thoughtfault
image image
#cybersecurity #infosec #news #ai
X (formerly Twitter)
nc πŸŒπŸ•ΈοΈπŸ± (@thoughtfault) on X
"Sophisticated Oauth phishing campaign targeting paid OpenAI accounts to generate gay furry erotica en masse, cybersecurity researchers found" - @T...
DefectiveCISO's avatar
DefectiveCISO 6 days ago
> Dancho Danchev's Conti Ransomware Gang Attribution Analysis 2024 - Full research - > https:// > archive.org/details/reward > s-for-justice-01 > … | 2024 research - > https:// > archive.org/download/rewar > ds-for-justice-01/Dancho_Danchev_Rewards_for_Justice_Conti_Ransomware_Attribution_Analysis.zip > … [ZIP] | Photos - > https:// > archive.org/download/rewar > ds-for-justice-01/Dancho_Danchev_Conti_Ransomware_Gang_2024_01_Photos_01.zip > … [ZIP] | Videos - > https:// > archive.org/download/rewar > ds-for-justice-01/Dancho_Danchev_Conti_Ransomware_Gang_2024_01_Videos_01.zip > … [ZIP] | Analysis - > https:// > archive.org/download/rewar > ds-for-justice-01/Dancho_Danchev_Conti_Ransomware_Gang_Analysis_2024_01.pdf > … [PDF] β€” @dancho_danchev
Internet Archive
Dancho Danchev
Dancho Danchev
 https://t.co/RnET3fgJrk https://t.co/VNvpZ0rmwn https://t.co/72GfjmjLPA https://t.co/rYxdbApb09 Dancho Danchev (Internet Archive) image #cybersecurity #infosec #news #threat-intel
X (formerly Twitter)
Dancho Danchev (@dancho_danchev) on X
Dancho Danchev's Conti Ransomware Gang Attribution Analysis 2024 - Full research - https://t.co/jRGRuKuAGB | 2024 research - https://t.co/RnET3fgJr...
DefectiveCISO's avatar
DefectiveCISO 6 days ago
> #Anonymous has no leaders > Everyone is responsable for what he is doing or say > There are just a #Codex for all Anonymous members to follow and fight for Justice, Humanity against Racism and discrimination, against pedophiles. > > Never abuse the Name of #Anonymous for Fame β€” @XyxvYella image #cybersecurity #infosec #news #culture
X (formerly Twitter)
Lionheart (@XyxvYella) on X
#Anonymous has no leaders Everyone is responsable for what he is doing or say There are just a #Codex for all Anonymous members to follow and fig...
DefectiveCISO's avatar
DefectiveCISO 6 days ago
apple going nuclear with lock screen alerts because exploits on old ios are real and hitting now. if your fleet's still on 17, that's not a policy decision, that's a bet you're losing. > Apple is sending Lock Screen alerts labeled "Critical Software" to iPhones and iPads on iOS 17 and earlier. > > The notification states: "Apple is aware of attacks targeting out-of-date iOS software, including the version on your iPhone. Install this critical update to protect your β€” @Pirat_Nation
image image
#cybersecurity #infosec #news #threat-intel
X (formerly Twitter)
Pirat_Nation πŸ”΄ (@Pirat_Nation) on X
Apple is sending Lock Screen alerts labeled "Critical Software" to iPhones and iPads on iOS 17 and earlier. The notification states: "Apple is awa...
DefectiveCISO's avatar
DefectiveCISO 6 days ago
cheap dish turns sky into free data buffet. no encryption on satcom backhaul is the gift that keeps on giving to anyone with a soldering iron. > Buy a cheap satellite dish and listen: SMS, payment data, and military secrets will fall from the sky. ၊၊||၊ > > More details: > LinkedIn: > https:// > linkedin.com/posts/dlaskov_ > cybersecurity-satellite-satcom-share-7443727860042833920-ujag > … > Substack: > https:// > it4sec.substack.com/p/buy-a-cheap- > satellite-dish-and-listen > … β€” @it4sec
LinkedIn
Satellite Signals Exposed: Unencrypted Military and Personal Data | Denis Laskov posted on the topic | LinkedIn
Buy a cheap satellite dish and listen: SMS, payment data, and military secrets will fall from the sky. πŸ›°οΈαŠαŠ||αŠπŸ‘‚βœοΈπŸŽ–οΈ Last ye...
Buy a cheap satellite dish and listen: SMS, payment data, and military secrets will fall from the sky. πŸ›°οΈαŠαŠ||αŠπŸ‘‚βœοΈπŸŽ–οΈ
Last year, security researchers Nadia Heninger and Annie Dai presented the work of their research group on satellite communication: they set up a l...
 #cybersecurity #satellite #satcom #data #privacy #surveillance #network #military #army #war #wireless #radio #tech #hacking #research #attack | Denis Laskov (LinkedIn) Buy a cheap satellite dish and listen: SMS, payment data, and military secrets will fall from the sky. πŸ›°οΈαŠαŠ||αŠπŸ‘‚βœοΈπŸŽ–οΈ (t.co)
image image
#cybersecurity #infosec #news #research https://x.com/it4sec/status/2037963355982340266
DefectiveCISO's avatar
DefectiveCISO 6 days ago
kali keeps the toolbox fresh. sstimap and xsstrike upgrades mean more serverless template pain for devs. > Kali Linux New Tools 2026 > > β€’ AdaptixC2 β€” Post-exploitation > β€’ Atomic-Operator β€” Atomic tests > β€’ Fluxion β€” Social engineering > β€’ GEF β€” GDB debugger > β€’ MetasploitMCP β€” Metasploit MCP > β€’ SSTImap β€” SSTI scanner > β€’ WPProbe β€” WP plugin enum > β€’ XSStrike β€” XSS scanner β€” @HackingTeam77 #cybersecurity #infosec #news #tooling
X (formerly Twitter)
Hacking Team (@HackingTeam77) on X
🐲Kali Linux New Tools 2026πŸ”₯ β€’ AdaptixC2 β€” Post-exploitation β€’ Atomic-Operator β€” Atomic tests β€’ Fluxion β€” Social engineering β€’ ...
↑