CylentSec

130 posts

CylentSec banner
CylentSec

CylentSec

@cylentsec

Retired military veteran | 21 years working in IT and security | Offensive Security Tech Lead (Pentesting) | 7 CVE | Interested in AppSec and Binary Reverse Eng

Katılım Ağustos 2025
179 Takip Edilen92 Takipçiler
CylentSec
CylentSec@cylentsec·
Are you running Crowdstrike on the DC? I saw for the first time recently that it was temp isolating the DC when password spraying one attempt per user. I didn’t even get a chance to try a second password. It generated a lot of help desk calls and looked like I had caused the lockout, until I showed my spray logs as proof.
English
1
0
0
80
Jon? Jhon? John? Juan?
Jon? Jhon? John? Juan?@DarkLordoftheIT·
We're having a pen tester at our organization and he locked out every AD account across the board...ugh
English
41
12
345
48.2K
CylentSec retweetledi
sw33tLie
sw33tLie@sw33tLie·
If you used Flameshot on Linux and wished it worked properly on Mac, this is it. But native and with way more features. github.com/sw33tLie/macsh…
English
1
2
16
1.1K
CylentSec
CylentSec@cylentsec·
Portswigger Burp MCP Server can overwhelm your AI agent's context window. BurpQL sits between your AI agent and your Burp project data, providing compact, search-optimized responses that give the agent exactly what it needs and nothing more. It's a complement to the Portswigger MCP Server. cylentsec.com/blog/2026/03/1…
English
0
0
0
44
Paul
Paul@WomanDefiner·
I am begging someone, anyone to clean up the disability fraud in the VA. This guy was a Navy reservist who went to school for the Government and got out after 2 years with disability benefits for anxiety and depression. This has to end.
English
1.1K
2.1K
27.6K
3.7M
VesperMartini
VesperMartini@VesperMart41932·
@cylentsec @CM1488_87 @WomanDefiner Most of the time when things are "hard to prove", it's because someone is slinging bullshit. I left the Marine Corps after 10 years in the mid 1980s, and I never got any brief from the VA, much less a disability brief.
English
1
0
0
25
CylentSec
CylentSec@cylentsec·
@rez0__ How is Claude Code at interacting with long-running cli tasks these days? I switched to Warp.dev a while back because it was superior at this but I’ve been wondering if there’s been any improvement?
English
0
0
0
166
CylentSec
CylentSec@cylentsec·
@VesperMart41932 @CM1488_87 @WomanDefiner If you "just get old and decide" then you're not likely to get any disability comp because it'll be harder to prove. You normally apply for disability right after you separate from service. Those briefs and people to help apply for VA disability is part of the separation process.
English
1
0
2
52
VesperMartini
VesperMartini@VesperMart41932·
@cylentsec @CM1488_87 @WomanDefiner It depends. If you suffer an actual injury, of course. If you just get old and decide your 4 years in the military wore you out, fck that. The old lady working the slicer at the deli in the supermarket can say the same. That's called "life" and "getting old"
English
3
0
3
106
CylentSec
CylentSec@cylentsec·
I spent 20 years in the military in a non combat role that was hard on my body. I have damage that makes old age worse than what it should’ve and have permanently reduced quality of life and pain. I can’t bring myself to ask for a military discount but my loss of health based on my insures should be compensated.
English
0
0
0
6
CylentSec
CylentSec@cylentsec·
@VesperMart41932 @RudeOnion @CM1488_87 @WomanDefiner It should if it was originally caused by a military workplace injury. I’m not talking about the usual “old man” feelings that come with aging. I’m specifically referring to things caused by injury on the job that get worse as we age.
English
3
0
0
17
CylentSec
CylentSec@cylentsec·
Bullshit. Many non combat jobs are very physical and can result in injuries and disabilities that permanently change our quality of life. I don’t dispute that there is some level of fraud going on, but I don’t agree that only combat vets and severe disability be the cutoff. One thing they could cut that is bullshit and is prevalent is disability for sleep apnea. A lot of that is due to obesity, and even if it isn’t, it’s not service related IMO.
English
2
0
12
578
🇺🇸Čino 🇭🇷
🇺🇸Čino 🇭🇷@CM1488_87·
@WomanDefiner I agree 100%. Unless youre in a combat role and/or are gravely physically injured you should not be eligible for ANY military disability. I live in one of the biggest military places in the country and the amount of douchebags ive seen brag about f*cking the system sickens me
English
66
19
1.4K
67.7K
Masonhck357
Masonhck357@Masonhck3571·
Anyone getting the new MacBook Pro? Not sure whether to upgrade the MacBook or wait for m5 Mac mini
English
7
0
9
3.3K
kuzushi
kuzushi@kuzushi·
dear lazyweb, what are the cool kids using to do screenshots of websites they are crawling?
English
3
1
7
532
CylentSec
CylentSec@cylentsec·
@Rhynorater Your podcast episode 165 inspired me to create this Burp MCP helper API and AI agent skill. It complements the Burp MCP server to reduce context window overflow. github.com/cylentsec/Burp…
English
0
0
0
73
CylentSec
CylentSec@cylentsec·
About ownership of the data: Use Anthropic models hosted in AWS Bedrock. Bedrock has a clear and simple privacy policy. It's easy to connect Claude Code and the included SDK's to Anthropic models in Bedrock. A big plus is you pay only for what you use so nothing is lost when you haven't consumed your monthly limit.
English
0
0
0
170
ippsec
ippsec@ippsec·
@mrgretzky Scary for us, horrifying for future generations. I can’t imagine all the kids in school right now using it to cheat learning and what happens if it goes away when they never learned fundamentals.
English
7
7
66
3.6K
Kuba Gretzky
Kuba Gretzky@mrgretzky·
"But I can't imagine AI always being this cheap. So, a fear is that I will become dependent on a service that I will be priced out of in the future." 100% this ☝️😥
ippsec@ippsec

Probably one of my favorite @NetworkChuck Videos - youtube.com/watch?v=dbMXi9…, loved the take on his hatred for ai, but also loves it. Definitely in the same boat, it scares me how capable it has become in such a short time. The other thing that really scares me is the frontier labs will likely always be a black box. The specific thing that scares me is how they use the data they collect. AFAIK - The Terms of Service when paying for the API and Subscription are wildly different, and I don't see much talk about that. I believe the API gives the user a lot more ownership over the data, where-as subscription, it is retained longer, and there are far fewer legal protections. I hear numbers like my $200 subscription can cost them anywhere from $2000 to $10,000/m. That's a lot of money to lose, and I know the money loss is offset by many things like the majority of users not making full use of their subscription -- But I can't imagine AI always being this cheap. So, a fear is that I will become dependent on a service that I will be priced out of in the future. Additionally, many platforms (ex: reddit/twitter) put things in place to stop AIs from freely harvesting data, but I don't think those types of stops really block them when users are installing tools on their devices. For example, the "anti-bot captcha" isn't really doing much when the user has an extension that gives the Frontier Lab the data behind that block anyway. Is this data sent to them? I really don't know but it seems the threat landscape has rapidly changed when it comes to data collection. I don't hate AI; it is wildly fun and does make me feel like a "10x engineer". I just hope it's a service that always remains available, and places don't start closing the doors once they have everything they need. As odd as it sounds, and I can't believe I'm saying this, but I hope GRC can aid us here. It would be nice if AIs obeyed when sites told them to go away, but my experience is the AI recognizes the site doesn't want them, but also acknowledges it could be prompt injection, so it trusts the user over the service. Obviously, the user could do some type of prompt injection so the AI doesn't see the refusal, and local models can always ignore it -- but atleast it would help places stop the unintentional leakages due to ignorance. I imagine it's easier to kick users off the platform that use prompt injection to bypass gaurdrails versus when nothing is stopping them. I really hope I'm just ignorant here, and someone can post why I'm wrong.

English
5
2
51
8.6K
CylentSec
CylentSec@cylentsec·
@ippsec @mrgretzky I've been saying this to everyone worried about AI taking offensive security jobs: None of the leading providers are turning a profit. Once their shareholders start demanding a return on investment and they raise prices it's going to shut down a lot of people who rely on it.
English
1
0
3
116
CylentSec
CylentSec@cylentsec·
Are your AI agents choking on massive HTTP responses when analyzing Burp Suite data via MCP? 🛑 BurpQL fixes this by providing compact, metadata-first search results and built-in recon commands to save your context window. Check out how to make Burp data actually usable for AI: cylentsec.com/blog/2026/03/1…
English
0
1
1
213
CylentSec
CylentSec@cylentsec·
You put lethargy/fear/doubt/pain aside and put one foot in front of the other and just start. Starting is the hardest part. Once you've started it's easier to keep going. An example would be cleaning the house may seem like climbing a mountain but focusing on just getting up and picking up this one thing and putting it away seems easy. Then you just move to the next thing and tackle it one bite at a time. Just get dressed for the gym, success. Then just get in the car and drive, success. Then just walk into the gym... Easier to think in small steps and I just need to do this one thing, then it's easier to keep going. Also there's a mindset of "Interest vs Commitment". If you're interested in losing weight or getting in shape, you'll make excuses. But if you're committed, you don't make nor accept any excuses, you just get it done even when it sucks. That leads to feeling mentally strong and a dopamine hit, which fuels the drive to keep going. Once you get in that mindset, the mental toughness and empowerment make you successful at everything you commit yourself to. Eventually you look back at all the goals you've checked off and feel like a new, stronger person.
English
0
0
2
1.4K
blue
blue@bluewmist·
People who exercise even when they don't feel like it, what's your trick?
English
5.9K
537
16.6K
3M
CylentSec
CylentSec@cylentsec·
@I_Am_Jakoby @cheddar420yolo Seriously, try writing notes with a pencil or pen and paper. It commits much more to memory and its sticks longer. There’s no comparison for learning. Of course for tech notes they’re all typed.
English
1
0
2
253
I am Jakoby
I am Jakoby@I_Am_Jakoby·
@cylentsec @cheddar420yolo Yup This is the same reason I always used notepad as an editor instead of things with auto completion Actually typing things in help you remember it more
English
1
0
2
170
cheddar
cheddar@cheddar420yolo·
The first time I heard someone suggest watching podcasts on anything above 1.0x, I thought they were crazy. Then I tried 1.25x. When that sounded normal (after just 5-10 minutes), I tried 1.5x. When that sounded normal (after just 5-10 minutes), I tried 1.75x. When that sounded normal (after just 5-10 minutes), I tried 2.0x. The human mind is a silly, incredibly malleable instrument.
English
5
0
26
1.6K
CylentSec
CylentSec@cylentsec·
@cheddar420yolo @I_Am_Jakoby I do the same and listen faster, but I also pause it to take handwritten notes. Handwritten notes are the key to remembering what you’ve learned.
English
3
0
3
130
cheddar
cheddar@cheddar420yolo·
I was a hold-out, probably because I liked to "savor" the content, as weird as that may sound. But I watched McJunkin's talk at WWHF about time as a lever, an idea which I had already internalized when scheming and plotting about personal finance and retirement planning, so finally it was time to listen faster.
English
1
0
2
93

Keşfet

@VesperMart41932 @CM1488_87 @WomanDefiner @rez0__ @RudeOnion @Masonhck3571 @kuzushi @elonmusk