Nedheesh Hasija

I want to share a quick thought for people in cyber security. This will be my longest tweet ever. I’ve spoken to many lately who are having an existential crisis from the constant posts about “the end of cybersecurity jobs.” Yes, things are changing quickly. This is a significant moment for the tech industry. Change can be uncomfortable. But we’ve seen cycles like this before. • When GitHub and open source took off, people said software engineers would disappear because code was free. • When AWS and cloud computing emerged, people said infrastructure jobs would vanish. • When fuzzing and SAST tools improved, people said vulnerability research would disappear. • Virtualization would eliminate infrastructure jobs. • Mobile computing was going to end desktop dev. • Exploit mitigations would end exploitability. It didn't. Each time automation improved, the amount of software grew faster than the automation. It does feel "different" this time as it's explosive. Some roles will shrink: • repetitive pentesting • basic vulnerability scanning • tier-1 SOC monitoring But other areas are expanding rapidly: • AI system security • supply chain security • identity architecture • autonomous agent security • critical infrastructure protection Historically, every time we eliminate one class of bugs, new classes emerge. Right now people are vibe-coding entire systems, giving AI access to their machines, crossing trust boundaries, and deploying autonomous agents with excessive permissions. The legal and regulatory world is nowhere close to ready. There will absolutely be new failure modes. Humans are amazing and always adapt, finding new ways to do things. The worst thing you can do right now is fall into a doom loop. ...and I’ll be honest, I too have felt the "psychological paralysis" a few times thinking, “Is this time different?” It's especially impactful when it comes from someone I respect in the community. There are certainly unknowns, in an industry where we've become accustomed to predictability. But... the majority of those reactions are usually driven by social media, not reality. Platforms like X reward engagement, and sensational doom posts spread faster than measured thinking. If you see something like: “Holy #$%^! Opus 66.6 just found every bug in Chrome and replaced 50 startups!” …mute it and move on. Instead: Stay curious. Learn the new technology. Adapt your skillsets. Build things. We’ll get through this transition the same way we always have. If I'm wrong then Sam Altman better be right about UBI! :) I'm sure that if this tweet gets any engagement that I'll get some heat for it, but a good friend of mine reminds me often to focus on what you have control over. I'll revisit this tweet at DEF CON 40!

Let me explain what this means so that you understand better. . Sometimes tiny cells in our stomach get very stubborn and turn into bad guys called cancer. They grow way too fast and don't listen to the body's rules. . But you see, these smart scientists in Korea didn't want to fight them with big scary bombs and bazookas like old medicines do. Instead they sat the cells on a wooden bench and said "Look here you stubborn cells, why don't you just remember who you really are and be good again? . So they made a pretend computer twin of our belly cells. Just like a magic video game version. (something like that sha) so they played around in the game to find the three bossy switches that were making the cells stay stubborn. . . Those three bossy switches have funny names. They are MYB, HDAC2, and FOXA2. Fantastic 3 lool . The scientists turned those three mean switches Off. Poof. And just like that guess what? The stubborn cancer cells were like "Ohhh… I remember now! . Then they calmed down, grew up properly, and turned back into nice, normal belly helper cells. No more bad growing. They then tried this in Mice, and the poor mice got better. The bad lumps got smaller because the cells stopped being the bullies they were. It's like telling your barking Dog at home to shusss and calm down. And it actually calms down. . . This isn't ready for humans yet, as it's still developing. But it's going to help out someday. And well, a lot of people are gonna be wayyyy happier. . . . Kudos to the scientists once again and I'm super happy about this development and the positive impact it's going to have on affected people 💪🏾💪🏾 . ✍️ Vincent The Therapist

Feel free to check out other cool stuff in the repo github.com/neddstarkk/dai…

Sick of staring at raw logs? 🧐 Wrote a Python script today to grep for SQLi attacks automatically. It parses Apache logs -> finds the 'OR 1=1' garbage -> spits out the Attacker IP. GitHub link below. Next step: Automating the firewall rule to block that IP.

1. netsh: Creating port proxies to tunnel C2 traffic. 2. wmic: Spawning hidden processes to break parent-child trees. 3. ntdsutil: Dumping credentials via "backup" features. #CyberSecurity #InfoSec #BlueTeam #LearningInPublic

State-sponsored actors don't always need custom malware. They may just be living off the land. Spent the morning breaking down CISA’s advisory on Volt Typhoon (AA23-144A). The reliance on native Windows tools is scary:

I guess attackers hate errors almost as much as we do. If the C2 returns a 404, the powershell script stays silent. Kinda cheeky actually.

Sunday reps: deobfuscating an Emotet dropper. Two things really stood out: 1. Backtick obfuscation - the backtick (`) character was used to obfuscate strings like so ("Dow`Nloadfi`LE") 2. A "QA" check: The script verifies the downloaded payload is >29KB before running it

I have been doing daily cyber reps where I try to push my knowledge by doing thing in my field that I do not know how to. Today that was malware analysis.

don't ignore the happy little onion and you will have the best year ever💕💕

The Family Man

Believe in love and don’t doom

︎ ︎ ︎ ︎ ︎ ︎ ︎

@SwapAgarwal Yes

This one page Notion portfolio has helped 12+ devs land jobs without referrals or fancy resumes. Today, I’m giving it away. It’s not just a template. It’s a high signal, recruiter-friendly doc that shows what you’ve built and how you think. Here’s why it works: - Designed for fast skimming. One page. Zero fluff. - Includes ChatGPT prompts to help you write with clarity. - Shows your projects and your decision-making process. - Adds product-thinking sections most dev portfolios miss (this is the era of product-first devs). - Built to stand out even if you don’t have a CS degree or job history. If you’re job hunting and want a portfolio that actually gets callbacks, drop a “yes” in the comments and I’ll send it over to you. Let’s get you hired. 🙌🏻

Women really psychologically torture you

Wishing this for so many people. May you receive that life-changing email in the second half of the year❤️🫶🏽

One time a girl I knew in college texted me at 11 pm to come over to her dorm to "fix her laptop issues" I thought it was selfish of her to ask me to come over that late so I blew her off cause I was little annoyed