This year I have a secret weapon when preparing examples: I write the code that generates the examples in Rust. 🤣 And then teach the students what happens in C.

(First, I enjoy Rust more and trust the results; second, being able to println! into a binary output is really handy for making the examples. And the playground.)

0206e8ff3d15a5e8.png

**OhNoDeepCrow** · Jan 21, 2023, 06:00

OhNoDeepCrow boosted

**PensacolaFNB** @PensacolaFNB@kolektiva.social · Jan 21, 2023, 06:00

Jan 21, 2023, 06:00

PensacolaFNB @PensacolaFNB@kolektiva.social

Great meal share tonight! 🥕 Solidarity. 🖤

#FoodNotBombs #FNB #MutualAid #FoodIsARightNotAPrivilege #Pensacola #Florida

95132f2090633fd2.jpg

**OhNoDeepCrow** · Jan 20, 2023, 18:29

OhNoDeepCrow boosted

**Eva** @evacide@mastodon.lol · Jan 20, 2023, 18:29

Jan 20, 2023, 18:29

Eva @evacide@mastodon.lol

"With AI, now any idiot can write malware!"

As a security researcher, I can assure you that idiots have been writing malware for quite some time.

**OhNoDeepCrow** · Nov 12, 2022, 14:53

OhNoDeepCrow boosted

**𝙱𝚊𝚋𝚎 𝚃𝚛𝚞𝚝𝚑** @UnFitz@mstdn.party · Nov 12, 2022, 14:53

Nov 12, 2022, 14:53

𝙱𝚊𝚋𝚎 𝚃𝚛𝚞𝚝𝚑 @UnFitz@mstdn.party

I never finish anything. I have a black belt in partial arts.

**OhNoDeepCrow** · Jan 19, 2023, 03:01

OhNoDeepCrow boosted

**Techmeme** @Techmeme@techhub.social · Jan 19, 2023, 03:01

Jan 19, 2023, 03:01

Techmeme @Techmeme@techhub.social

Amazon plans to close AmazonSmile, its program launched in 2013 that let customers donate 0.5% of eligible items' purchase prices to a charity, on February 20 (Addy Bink/The Hill)

https://thehill.com/homenews/nexstar_media_wire/3818818-amazon-to-close-charitable-program-amazonsmile/
http://www.techmeme.com/230118/p36#a230118p36

**OhNoDeepCrow** · Jan 04, 2023, 07:14

OhNoDeepCrow boosted

**SwiftOnSecurity** @SwiftOnSecurity@infosec.exchange · Jan 04, 2023, 07:14

Jan 04, 2023, 07:14

SwiftOnSecurity @SwiftOnSecurity@infosec.exchange

Just to be clear this is a Windows utility not synthetic cocaine

Show thread

**OhNoDeepCrow** · Jan 04, 2023, 03:52

OhNoDeepCrow boosted

**Bunny Mickley** @opsnlops@furry.engineer · Jan 04, 2023, 03:52

Jan 04, 2023, 03:52

Bunny Mickley @opsnlops@furry.engineer

Computers used to scream out in pain when we connected them to the Internet.

This was a clue and we just didn't listen.

**OhNoDeepCrow** · Dec 28, 2022, 02:18

OhNoDeepCrow boosted

**TProphet** @tprophet@defcon.social · Dec 28, 2022, 02:18

Dec 28, 2022, 02:18

TProphet @tprophet@defcon.social

1/ A lot of people have been asking for an explainer on what is going on with Southwest Airlines and the massive meltdown that occurred. Hi, I'm TProphet. I write the Seat 31B travel blog (https://www.seat31b.com) and closely follow the airline industry. More importantly, I have a friend whom Southwest abandoned in Las Vegas until New Year's (along with his cat), and there was literally nothing I could do for him. Ready? Let's dive in.

**OhNoDeepCrow** · Dec 24, 2022, 23:34

OhNoDeepCrow boosted

**The Museum of Science Fiction** @MuseumSciFi@spacey.space · Dec 24, 2022, 23:34

Dec 24, 2022, 23:34

The Museum of Science Fiction @MuseumSciFi@spacey.space

RT @Richard_Kadrey
Leaving out the traditional Zardoz cookies for Santa.

6d8abc514cf0affb.jpeg

**OhNoDeepCrow** · Dec 22, 2022, 02:43

OhNoDeepCrow boosted

e4 @efortmanteau@friendzone.social · Dec 22, 2022, 02:43

Dec 22, 2022, 02:43

e4 @efortmanteau@friendzone.social

Chipotle employee challenges you to a duel and slaps your face with a glove but it's one of those chainmail meat-chopping gloves and he wins immediately.

**OhNoDeepCrow** · Dec 21, 2022, 14:13

OhNoDeepCrow boosted

**Nicholas Weaver** @ncweaver@thecooltable.wtf · Dec 21, 2022, 14:13

Dec 21, 2022, 14:13

Nicholas Weaver @ncweaver@thecooltable.wtf

With the Guardian newspaper hit by ransomware, this is your occasional reminder:

We don't have a ransomware problem per se. We have a Bitcoin problem. Any financial system that can electronically transmit $5M ransoms without KYC/AML checks would do. But such a system is only cryptocurrency. Banks would rightly view allowing ransom payment as an exestential threat, while $5M in cash is 50kg, and needs to be picked up in person.

https://www.lawfareblog.com/ransomware-problem-bitcoin-problem

**OhNoDeepCrow** · Dec 21, 2022, 15:17

OhNoDeepCrow boosted

**SwiftOnSecurity** @SwiftOnSecurity@infosec.exchange · Dec 21, 2022, 15:17

Dec 21, 2022, 15:17

SwiftOnSecurity @SwiftOnSecurity@infosec.exchange

Trying to do OSINT on the developers of the LemonParty malware is very difficult

**OhNoDeepCrow** · Dec 01, 2022, 17:48

OhNoDeepCrow boosted

**Catalin Cimpanu** @campuscodi@mastodon.social · Dec 01, 2022, 17:48

Dec 01, 2022, 17:48

Catalin Cimpanu @campuscodi@mastodon.social

Zscaler has a breakdown of updates to the code of the Black Basta ransomware during November 2022.

These include changes to the ransomware's file encryption algorithms, the introduction of stack-based string obfuscation, and the use of per-victim file extensions.

Zscaler researchers believe the modifications are an attempt to better evade antivirus and EDR solutions.

https://www.zscaler.com/blogs/security-research/back-black-basta

6b70a529c936ac6c.png

**OhNoDeepCrow** · Nov 17, 2022, 18:21

OhNoDeepCrow boosted

**luke oneil** @lukeoneil47@mastodon.social · Nov 17, 2022, 18:21

Nov 17, 2022, 18:21

luke oneil @lukeoneil47@mastodon.social

At least 31 children were found to be working in the employ of Packers Sanitation Services Inc. in Nebraska and Minnesota. Packers is one of the largest food sanitation companies in the country with 17,000 employees servicing around 700 plants.

https://www.welcometohellworld.com/we-got-so-good-at-killing-them-and-making-money-off-of-it-we-almost-ruined-them-and-everything-forever/

**OhNoDeepCrow** · Nov 18, 2022, 02:54

OhNoDeepCrow boosted

**Talia Lavin** @swordsjew@mstdn.social · Nov 18, 2022, 02:54

Nov 18, 2022, 02:54

Talia Lavin @swordsjew@mstdn.social

http://theswordandthesandwich.substack.com

Show thread

**OhNoDeepCrow** · Nov 11, 2022, 12:09

OhNoDeepCrow boosted

**Whitney Champion** @shortstack@infosec.exchange · Nov 11, 2022, 12:09

Nov 11, 2022, 12:09

Whitney Champion @shortstack@infosec.exchange

stoked to announce that @eric_capuano and i had our talk accepted at 🌵 @cactuscon 11 🌵!

"security operations with velociraptor" 🔥🦖🤓 can't wait!

check out the last @velocidex talk we did, "breaches be crazy - scaling forensics across many systems" - https://youtu.be/AuOWMz1nXqk

see you nerds in january :)

2e6b985a7839ebe4.jpg

**OhNoDeepCrow** · Nov 08, 2022, 21:21

OhNoDeepCrow boosted

**Rairii** @Rairii@infosec.exchange · Nov 08, 2022, 21:21

Nov 08, 2022, 21:21

Rairii @Rairii@infosec.exchange

OK, so I'm going to drop a nice #ZeroDay here. At least I think it's 0day, but for bring your own vulnerable driver purposes it's still not blocklisted (despite reporting it months ago, maybe MS only adds drivers that are actively exploited):

BattlEye Anti-Cheat BEDAISY.SYS PPL privesc:

Have the string "top BEService&pi" somewhere in your executable PE image. You can just write it to .data if you want.
Load bedaisy.
Open its \\?\GLOBALROOT\Device\BattlEye device.
Write a 9-byte zerofilled buffer to it.
Congratulations, you just got WinTCB PPL, go tamper with lsass or whatever.

#AntiCheat #PrivEsc