Mitch Hines

@techspence First linux was knoppix

What’s the first operating system you ever remember using?

@ImposeCost Same, but ill raise you to 1.6% 😮

People out here talking about moving homes. I have 2.375% interest rate. I'm never moving. 🤣

@domchell Great advice, I’v been saying ill report as I go for like 14 years, it rarely happens 😂 funnily it happens on the easy Pentests, not the multi month red teams as you say… 😭

The one tip I will give to anyone starting out in any pentest / red team role is the one thing after 20 years of it I still never manage to do properly…. Report as you go ✅✅✅ That way you don’t end up spending your Sundays writing reports. Writing a report on a 3.5 month project with minimal notes is brutal 😆❌❌❌

@TimelessP Return to the source…

@curi0usJack Definitely sounds fake to me, clickbait

Oh.

@WeAreWST Who nooh

Thepchaiya Un Nooh is magical to watch!

@_xpn_ Twins

This dog ❤️

Does anyone know if you can submit bug bounties to Google for leaking Gemini system prompt ?

@NullMode_ My first ever MPLS test, I volunteered for the job, bought the biggest book out there, spent the next 2 weeks trying to become an “expert” in mpls, ready for the couple day pentest lol … fun times

What happened to just figuring it out on the job and learning as you go? I caught up with a friend who also works in cybersecurity last week. We ended up chatting about how newer folks in the industry approach things they’ve not seen before - or rather, try not to. There seems to be more hesitation around being asked to assess something they haven’t seen before. I’d say this kind of resistance has always been around - I remember people using it as a way to avoid things like firewall reviews lol “can’t do that, sorry!” Or people avoiding becoming the resident expert in some horrendous assessment type by not raising their hand when SAP assessments appear. But now, more and more, the responses seem to be more like: "I’ve not had any training on this so I don’t feel comfortable looking at this" "I’ve only ever done web apps / infrastructure / mobile etc." "Sorry I've not got any experience on this" etc. It just feels like folks don’t want to leave the comfort zone of what they already know and like to test. It didn’t used to be like this. People were just excited to hack stuff. You’d dive in, figure it out as you go, and get stuck in. This attitude felt more present before cybersecurity turned into more of a defined career path. A lot of my own work was loosely scoped on purpose. I had to get my head around things quickly and just keep moving. I also ended up getting thrown into odd or awkward jobs - either because no one else wanted them or no one knew where to start. Yeah, sometimes it was uncomfortable, but those were always the jobs I learned the most from. Most folks who’ve been in the industry for a while should be able to take the security concepts and principles they already use and apply them to something they haven’t seen before – just put the security hat on and get to work. Anyone else seeing this kind of shift? How can we bring the old mindset back?

@_RastaMouse Sorry for your loss 💔

Today we had to say goodbye to a pretty great dog of 12ish years. He was a racing greyhound - ‘Magical Patch’ - who we adopted after he was forced into early retirement due to an injury. I hope we provided him with a good life and that we’ll see him again someday in the next.

@_RastaMouse @C5pider Tyty

@_g0dmode @C5pider CLion of course 😁

I found the easiest way (for me) to build @C5pider's Stardust on Windows is just to prepend "wsl --" to the build steps in the makefile 😅 Obviously install mingw, nasm, and the other dependencies first.

@Octoberfest73 @_RastaMouse +1 to that

@_RastaMouse Actually no lol, I’m serious. I did try with this latest project to add c/c++ highlighting but given the nature of the project (both BOF and PIC, some share source files, etc) I had more code with red lines than without. I also always run CS from Linux, so makes that easy

@grahamdlny @Inevitablewest Genuinely : Can you post any sources to what you have said here ?

As of February 21, 2025, there is no definitive evidence that Apple is currently allowing any government unrestricted access to iPhone users' private data. However, recent developments involving the UK government have raised significant concerns and prompted actions from Apple that impact user privacy. The UK government reportedly issued a secret order under the Investigatory Powers Act 2016, demanding that Apple create a backdoor to access encrypted data stored in iCloud, not just for UK users but for all Apple users worldwide. This order, first reported by *The Washington Post* earlier in February 2025, targets Apple’s Advanced Data Protection (ADP) feature, which provides end-to-end encryption for iCloud data, ensuring that only the user can access it—not even Apple itself. The UK’s demand was for blanket access to this encrypted data, rather than targeted access to specific accounts, sparking widespread criticism from privacy advocates who called it an "unprecedented attack" on privacy rights. Apple has strongly opposed such demands in the past, emphasizing that privacy is a "fundamental human right." In response to this specific UK order, Apple has taken the significant step of pulling the ADP feature for new users in the UK as of 3:00 PM GMT on February 21, 2025, with plans to disable it for existing UK users at a later date, according to a *BBC News* report from earlier today. This means that iCloud data for UK users will no longer be end-to-end encrypted, making it accessible to Apple and, by extension, shareable with law enforcement if a warrant is provided. However, this rollback is limited to the UK and does not indicate that Apple has implemented a global backdoor or is currently granting governments direct access to encrypted data elsewhere. Apple’s decision to remove ADP in the UK rather than comply with the backdoor demand suggests it is unwilling to weaken encryption globally. The company has a history of resisting similar requests, such as in 2016 when it refused a U.S. court order to unlock an iPhone, and in 2023 when it threatened to withdraw encrypted services like iMessage from the UK rather than comply with surveillance demands. Reports indicate Apple is likely to appeal the UK order, though it must comply during the appeal process under UK law unless it fully withdraws the service. For users outside the UK, there’s no evidence as of now that Apple has altered its encryption practices or granted governments access to private data due to this order. However, the UK’s move has raised alarms globally, with U.S. lawmakers and privacy groups warning that it could set a precedent for other nations, including authoritarian regimes, to demand similar access. Critics argue that any backdoor, even if intended for government use, could be exploited by hackers or other entities, undermining security for all users. In summary, Apple is not currently allowing broad government access to iPhone users’ private data worldwide. In the UK, it has chosen to disable end-to-end encryption for iCloud rather than provide a backdoor, affecting only UK users’ data security. The situation remains fluid, and Apple’s next steps—whether appealing the order or further adjusting its services—will determine the broader impact on user privacy.

🚨BREAKING: Apple surrenders to the Labour government and removes highest level data security tool for Apple users The government now has access to its citizens messages and camera roll. This is the biggest breach of privacy Western civilisation has ever seen. Britain is in big trouble.

@adamssimonc @EmerysClipBoard @danbardell Yeah maybe.

@_g0dmode @EmerysClipBoard @danbardell Nope. We can only register 3 as our domestic season does NOT start and end in the same calendar year. I’m assuming Malen misses out.

We’ve cracked it! #AVFC

@jimarnott74 @carlton5385 @AVFCOfficial

@carlton5385 @AVFCOfficial I believe that we can only register 3 new players for the Champions League, so 2 will miss out…

Replaced Carlos with Diasi, Philogene with Malen, Buendia with Asensio, Duran with Rashford, Ned with Garcia & £65mill up WHAT A WINDOW. Hopefully proved the Doubters wrong me included #AVFC #UTV @AVFCOfficial

@EmerysClipBoard @danbardell Not bailey sorry, buendia

@EmerysClipBoard @danbardell This reads to me as though we should be able to register 4 as duran, carlos, nedel, bailey, philogene all out of our List A? Just needs to be done before 6th Feb. The website actually says 2nd Feb which is going to cause confusion. The official doc is here:documents.uefa.com/api/khub/maps/…

@hill_hilly18 @villareport @FabrizioRomano Agreed. Take the money as long as a replacement is lined up

@villareport @FabrizioRomano Am I the only villa fan who thinks Duran is a bad egg

🚨💣 Al-Nassr are on the verge of reaching a verbal agreement with Aston Villa to sign Jhon Durán — €75m fee + add-ons. @FabrizioRomano #avfc

@HackingLZ Mom was right, we still have to go outside and get some sunlight for those pesky on site visits 😞