nate
724 posts
@MazdaMX5Cup @GPSTPETE @MazdaMX5Cup where is the paddock with the posters? Not seeing anything on the event map.
English
@UK_Daniel_Card I did a sort of Spotify wrapped after the first year I built it. I'll work on putting something together for last year!
English
Facts. I built badpwd.com so you could see not just the user and the source, but also the passwords they're using.
mRr3b00t@UK_Daniel_Card
Adventures of a honeypot! Want to see some cyber reality? come check this out tweeps! This is literally how someone major incidents start. pwndefend.com/2026/01/20/adm…
English
Giveaway.
@HCAdamSec and @SecureAerospace are sponsoring today’s giveaway of a set of the sold-out Aerospace Village 2024 & 2025 DEF CON badge + SAO. This badge is a fully custom (and hackable) Linux SBC with integrated ADS-B receiver, GPS, and more.
The “Charlie” SAO adds even more capabilities including listening to Air-Band VHF audio, broadcast FM (in stereo!) and weather radio on a grayscale OLED, all made possible with a plethora of hardware hacks!
The Aerospace Village is a non-profit organization where aerospace security and hacker culture come together to build a more secure aerospace future.
- Leave a comment below for a chance to win
- United States only
English
nate retweetledi
One of the most insecure defaults is getting less insecure at the end of this month. Microsoft is limiting what permissions a user can consent to. This is very interesting for everyone doing #BEC investigations. Curious to see if this will impact malicious app usage.
More info (#microsoft-recommended-current-settings" target="_blank" rel="nofollow noopener">learn.microsoft.com/en-us/entra/id…)
#stayInvictus #BEC #CloudIncidentResponse
English
Sharing for awareness of the awareness.
Andrew Kalat@Lerg
It's cybersecurity awareness month! So, uh, be aware! There, done.
English
I can't wait until this tactic is used in a KnowBe4 simulation. Imagine failing this test 😭
Matt Johansen@mattjay
This BBC reporter was offered 25% of a ransom payout if he gave hackers access to the corporate network. He played along, so we got a look inside their tactics here:
English
nate retweetledi
🚫 These threat actors tried to hide their code behind the GPU. We caught them anyways.
🐺 Our @AWNetworks Labs team uncovered a threat actor abusing GitHub’s repository structure and Google Ads to redirect users to a malicious download, while a GPU-gated decryption routine kept the payload encrypted on systems without a GPU. We have named this new attack technique #GPUGate.
👉 Full research here: arcticwolf.com/resources/blog…
#CTI #ThreatResearch #ThreatIntel #ArcticWolf #SecOps #SOC
English
Hello World, I’m brand new to cyber security and I’m looking for opportunities to learn anything I possibly can. I want to be able to connect with anyone sharing advice or experience. I’ll be at #GrrCon this year hope to meet some of you there!
English
Say it louder for those in the back.
@
@techspence If you're not doing risk acceptance on purpose you're doing it by accident
English
💥 𝐂𝐥𝐨𝐮𝐝 𝐋𝐚𝐛𝐬 𝐢𝐬 𝐥𝐢𝐯𝐞!
🏗️ A hands-on lab environment to practice your cloud incident response skills.
cloudlabs.invictus-ir.com
We're also doing a giveaway here, to enter:
1. Like this post
2. Comment why you want to have access
(Winners announced Monday September 1)
#stayInvictus #CloudLabs #CloudIncidentResponse
English
nate retweetledi
I just started a new blog, and this is my first post. I took a bit of PTO, so this is a little record of some fun I had playing around with Intune during that time. It's about enrollment restriction bypass😄
temp43487580.github.io/intune/bypass-…
English
nate retweetledi
nate retweetledi
You gotta do this. Something will probably break, but that's the name of the game.
@
**NEW** BHIS | Blog Did you know your M365 tenant accepts unauthenticated email for your tenant domains by default? Stop Spoofing Yourself! Disabling M365 Direct Send by: @Securecake Published: 8/20/2025 Learn more: blackhillsinfosec.com/disabling-m365…
English