Professor Frank

The Denver OWASP group is happy to announce the annual SnowFROC conference has been resurrected. Our last in-person conference was right before the pandemic and we have been working hard to bring it back. SnowFROC.com for tickets and more info

@sec_hub93028 You are there to support the business

Be aware of the industry you’re in as a cybersecurity professional. For example, in the oil and gas industry, the price of crude oil often determines the next round of layoffs. The blockade on the straight of Hormuz will have more of an impact on you than the release of Mythos. This is normal in the oil industry. Be prepared for it. Your job security depends on it. Always be aware of your specific situation and move appropriately.

@sec_hub93028 @gabriel1 1) I know what I want and cannot find the person 2) I cannot afford the right person 3) I shift people around because I cannot find the right person

@sec_hub93028 Disagree with @gabriel1 statement. I am a hiring manager and I know what to ask in an interview. Some questions are about knowledge, others disguised to find out about behavior. I give up and settle because

Agree or Disagree?

In this video, I break down how a phishing email attack works. By clicking a malicious link, malware can establish a reverse shell, giving an attacker remote control of your machine. I also demonstrate persistence techniques that allow the attacker to maintain long-term access.

DFIR 8 1 Memory Forensics Memory wcry youtu.be/u3qNFcaDxv0?si… via @YouTube As I wrap up this teaching chapter, I’ve been reflecting on what makes a great analyst. It’s never about mastering a tool; it’s about mastering the entire cycle. 🔄 I have just released a new video

@fidexcode 6 For my home setup

Which number is your current level of setup?

@vxunderground But are they your real passwords? Or a honey token? 😆

wHatS a GooD pAssWorD mAnAgeR I store all my passwords in a text file called "passwords" and if someone successfully gets access to that file then I'm going to kill myself That's my security model

@sec_hub93028 Yes, but to observe, not participate

Should interns be required to help with on call work? Example: A SOC analyst gets paged at 2 am, and so does their intern.

@sec_hub93028 Fully agree. This is a bit more art than science, but use the science to drive the art

You need to care about more than just your brand and social media presence. You also have to focus on your internal brand within the company you work at. This is how you build your reputation. People will want to know: Are you trustworthy? Do you execute projects start to finish? Are you easy to work with? Build that internal brand.

Hack the planet!

@sec_hub93028 Effective ID is who I am logged in as now. Real ID is used when I start a process. Saved set ID is if some reason I want to drop my elevated process?

Interview Question 444: Distinguish real UID, effective UID, and saved set user ID. Why do they matter for privilege management?

@sec_hub93028 It is not that simple. Where is the server? Is it exposed to the public internet, or behind several layers of security? What type of data? Same with employee? Type of data? Is the employee know they have the access?

What’s more dangerous: an unpatched server or an overprivileged employee?

@c_yatteau I had to do a double take on what the shirt said

Don’t let the shirt fool you, I swear I’m friendly 😄

@sec_hub93028 @SJFriedl As an auditor, I am pushing a risk and APT based approach using Mitre @sec_hub93028

@SJFriedl 💯. How do we address this issue?

What's something in cybersecurity that needs more attention?

@SJFriedl @sec_hub93028 Agreed! I am an auditor @SJFriedl

@sec_hub93028 Auditors who care more about paperwork than actual security.

@0sm0s1z It means “read this blog” and “buy this product “ and by implementing the solution,our network is 10% secure

I don’t know what zero trust means.

@sec_hub93028 I am working on a three hour adversary workshop for the RMISC.org conference in May

What are you working on this weekend?

Level up your cybersecurity skills! 🚀 Choose your adventure: Defensive coding with Secure Code Warrior 🛡️ or offensive techniques with Security Journey 🗡️. Week-long workshops! Sign up at snowfroc.com/ctf #cybersecurity #infosec #CTF

🚨 Just 30 days until Denver's premier cybersecurity event, SnowFROC! Don't miss HD Moore's keynote on the pros and cons of Metasploit. #Cybersecurity #SnowFROC2025 🚀🔒