Christian N. (They/Them)

I've begun my migration over to the mastodon lands, find me as usual @guardiancosmos" target="_blank" rel="nofollow noopener">infosec.exchange/@guardiancosmos

@chriselgee Sorry I missed! I don't twitter anymore, I went to the other place 😅 'Ema' they are small wooden tablets that you put a name and prayer on and hang up at a shrine or temple, typically also has a horse depiction in lieu of an actual horse

@GuardianCosmos ?

OK, so I'm playing this old SNES game that apparently never had an American release. You solve these puzzles to reveal some low-res image like a dolphin, a house, etc. So this one is... dog in a birdhouse? Google Translate says the Japanese characters mean "Emma." Help?

This is my account on Mastodon - @GuardianCosmos" target="_blank" rel="nofollow noopener">infosec.exchange/@GuardianCosmos - verified by Twittodon.com

OpenSSL?

Check the repo that's been stood up to help track what you'll be patching today!

1\ #DFIR: Chrome Forensics - How to Recover CLEARED History If a user just cleared their browser history, you can still recover everything they were just looking at from the session files: %appdata%\Local\Google\Chrome\User Data\Default\Sessions inversecos.com/2022/10/recove…

A thread worth reading

BSides is always a good time and a great way to get to your first conference, if this is your local, and even if it's not, this is for you!

Take note and mark your calendars folks To their credit, this is the first Crit in Openssl since 2016, that's a pretty good record given how many places it's used

@leanrum Oh good you have secured the potatoes! It was on my @pumpcon Todo list this morning 🤣 see you all soon!

Great thread on resources!!

Anyone else still in this trap? 😂

If 41 lines of code can bypass the authentication process on the administrative interface of FortiGate firewalls, FortiProxy web proxies, and FortiSwitch Manager (FSWM) on-premise management instances, then something is very wrong. This is not acceptable @Fortinet

@dakacki Would you go buy the dang hat already and own your amazing look here, cause the hat with with stash and the beard just works

Friends, yay or nay?

This will be a thread discussing a real world breach involving a drone delivered exploit system that occurred this summer Some details I am not able to discuss, however for the blue teams & red teams out there I hope this provides a good measure of capability. 🧵🚁 🎮🖥️🦠

To celebrate my new #AADInternals blog, I also published an online OSINT tool at aadinternals.com/osint It allows to get tenant information using: * Tenant ID * Domain name * Email/UPN The domain list includes links to ease the gathering of further information. Enjoy!

Fox-IT just open sourced their enterprise forensics tooling dissect. This is a big project that some of the smartest people I know have worked on. It supports many filesystems and file formats, all as Python libraries. Docs: docs.dissect.tools / code: github.com/fox-it/dissect

I don't know what to do with this knowledge, but today I learned that curl has a handler for LDAP URIs. curl --user $CREDS "ldaps://ldap.foo.com/DC=ads,DC=foo,DC=com?memberOf?sub?(&(sAMAccountName=$USER)(memberOf=CN=$GROUP,OU=Distribution,OU=Groups,DC=ads,DC=foo,DC=com))"

Bravo @dotMudge. That's it. That's the tweet. cnn.com/2022/08/23/tec…