codypierce
705 posts
codypierce
@codypierce
Founder and CEO @ AlphaWave (https://t.co/xez532XFDs)
Austin, TX Katılım Temmuz 2008
150 Takip Edilen1.3K Takipçiler
@0xcharlie Security research is incentivized by press coverage, not by overall safety impact to people.
English
Car hacking question to ponder for the weekend. Why does Tesla make up approximately 80% of all car hacking research while Tesla makes up 2% of US automobiles?
English
you can! you can even do a partial overwrite before blocking by mmap’ing a normal map contiguously to a FUSE mapping. just tested it and it works nicely :)
Specter@SpecterDev
@chompie1337 @vnik5287 Oh wow TIL, that's awesome. Thanks for pointing that out wasn't aware you could use FUSE that way :)
English
PLEASE SEND HELP! IM TRAPPED IN THE FACEBOOK MULTIVERSE AND I RAN OUT OF ZUCKBUCKS! HELLO??
English
@wintermute_hex @BlackHatEvents @defcon Thanks for that, I stand corrected. If I could edit the tweet I’d switch it to Depression.
English
English
Stop shaming people for attending @BlackHatEvents and @defcon in person. Suicide and addiction rates have skyrocketed due to isolation. Protect yourself and others and have fun. #MentalHealthMatters
English
@dinodaizovi Been about 10 years since the last discussion. Looking forward to 2031!
English
0day suppliers also only exist because there are buyers… I think there is a lot of motivated reasoning going around.
The hardest thing to change are authoritarian regimes but surveillance firms selling to them from democratic countries are an obvious point to put pressure on.
Costin Raiu@craiu
@ryanaraine The 0-day suppliers are the root problem here and one that is much worse than the issue of spyware developers. Without 0days, spyware would be manageable and limited to things like social engineering. It is the 0-days and 0-clicks that make it so bad and dangerous.
English
@dwizzzleMSFT I got to stand on stage next to Ed rush and optical when they were touring wormhole. It was awesome.
English
@neontunnel This is really cool, way above my head but I always appreciate a good C graphics. I’ve dabbled writing a renderer but haven’t had time to really dive in.
English
My toy renderer, part 1: Keep it simple momentsingraphics.de/ToyRenderer1Ke…
English
Are people just learning about TPM? It's been around/available for a very long time.
English
@markstjohn and I are beyond excited to begin the next chapter and continue combining world-class data with actionable insights to help customers of all sizes stay secure throughout their digital transformation!
AlphaWave, Now Part of ZeroFox@alphawaveco
Excited to join the @LG_Cyber team. Combining our attack surface discovery approach across #cloud & #containers with LookingGlass’s deep #ThreatIntel will help organizations seeking to better defend their digital assets on an ongoing basis. bit.ly/3qjWRwW.
English
@dinodaizovi I disagree as far as the security industry is concerned. If your mission as a vendor isn't to make your customers more secure then that's not helpful. If a company like F-Secure sells EDR/MDR products while also releasing C2 frameworks then that's bad.
English
@codypierce I think that industry isn't really tasked with defending so much as selling their products. I think the real industry tasked with defending makes the tech made for functional purposes and they aren't the ones releasing attack tools against their products for obvious reasons.
English
The umbrella salesman will never agree to build a roof.
In other words, an industry whose revenue is based on disposable responses to events as a service will never align with building any type of resilience that reduces the need for their services.
English
@ajpc500 Your first sentence is exactly why releasing C3 is irresponsible.
English
FWIW I’d imagine the FireEye DARKSIDE blog is the first time many defenders have heard of F-Secure’s C3. I thought it might be useful to resurface some material we’ve put out for detection opportunities/limitations (1/7)
English
codypierce retweetledi
