Anson Gomes

@el_ap0stol @JediMammoth @nmonkee @mwrinfosecurity @mwrlabs @FSecure @DerbyCon @aag Done!

@gomes_anson @JediMammoth @nmonkee @mwrinfosecurity @mwrlabs @FSecure @DerbyCon @aag Can you follow me to send you the ticket?

Turns out @mwrinfosecurity @mwrlabs @FSecure has a bunch of @DerbyCon tickets going spare. Would be nice to give them good homes. So let us know if you or someone you know is deserving and in need. Shame to have them go to waste on sadly what will be the finale for #DerbyCon.

@el_ap0stol @JediMammoth @CircuitSwan @nmonkee @mwrinfosecurity @mwrlabs @FSecure @DerbyCon @Squidly1 @Ceb3 @aag @valynn @HelenNegre @JonnCartwright @darhou @F4 @m_egan11 @Mokuso @DustinC @dustinbcox @wolfmailman @sweber41337386 @istand @SendNodes @pyxismusic1 @stroz @secitup Yes, still looking.

@JediMammoth @CircuitSwan @nmonkee @mwrinfosecurity @mwrlabs @FSecure @DerbyCon @Squidly1 @Ceb3 @aag @gomes_anson @valynn @HelenNegre @JonnCartwright @darhou @F4 @m_egan11 @Mokuso @DustinC @dustinbcox @wolfmailman @sweber41337386 @istand @SendNodes @pyxismusic1 @stroz @secitup Are you still looking for a ticket?

If you want to remotely infect Macs, read this 🍎🤒 objective-see.com/blog/blog_0x38… credit: 0⃣ WINDSHIFT APT who is infecting🍎-users of Middle Eastern .govts 1⃣ Taha Karim/@GuardedbyGenius for the excellent "The Trails of WINDSHIFT APT" talk at @hitbgsec 🙏

Excited to see that my friend and former colleague @gomes_anson has co-created @shoshingroup, a security consultancy specializing in audits of smart contract technology

Read about Shoshin's audit of CryptoFin's bskt smart contract medium.com/shoshin-group/…

Read about our audit of CryptoFin's bskt smart contract medium.com/shoshin-group/…

Why security is important - a survey of Consensus 2018 medium.com/shoshin-group/…

IT'S ALIVE! Welcome to the #defcon #CallforEverything! We’re open for proposals in the following areas: Talks, Workshops, Villages, Contests, Events, Parties, Music, Demo Labs, Press, and Vendors! Let's light this candle, hacker fam! #defcon26 defcon.org/html/defcon-26…

Using #Meltdown to steal passwords in real time #intelbug #kaiser #kpti /cc @mlqxyz @lavados @StefanMangard @yuvalyarom meltdownattack.com

The book iOS App Reverse Engineering, as a gift to the whole jailbreak community, is now open-sourced on github github.com/iosre/iOSAppRe…

... And the nominees for the 2015 Pwnie Awards are: pwnies.com/nominations/

My slides from #syscan 2015 on Hyper-V IPC Internals and PnP Nonsense are at: alex-ionescu.com/syscan2015.pdf. Please respect copyrights. kthxbai.

Here are the two exploits for CVE-2015-1318 and CVE-2015-1862, gist.github.com/taviso/0f02c25… and gist.github.com/taviso/fe35900…

New study finds that absorbing the cost of data breach is cheaper than fixing the problem. cuna.org/Stay-Informed/…

Misissued Google certificates under CNNIC: googleonlinesecurity.blogspot.com/2015/03/mainta…

Google's plan for End-to-End key distribution is finally public, and it's not Web of Trust code.google.com/p/end-to-end/w…

We worked with @torproject to study Tor Browser! Blog: blog.torproject.org/blog/isec-part… Ours: isecpartners.github.io/news/research/… Report: github.com/iSECPartners/p…

Tips and lessons learned in building a Security Engineering organization: slideshare.net/zanelackey/bui…

Google goes to war against zero-days - bit.ly/1n751o7

Unauthorised certificates for Google domains: googleonlinesecurity.blogspot.com/2014/07/mainta…