alcastronic @alcastronic@fosstodon.org
"Traitor packages up a bunch of methods to exploit local misconfigurations and vulnerabilities (including most of GTFOBins) in order to pop a root shell."
Together with the Internet Society, we have written an open letter to the EU to explain why an encryption backdoor for the 'good guys only' is simply impossible. Keep fighting for a secure internet with us! 💪👇
https://www.internetsociety.org/resources/doc/2020/breaking-the-myths-on-encryption/
What is it that makes logout's with #SSOs and token revocation such a minefield? Are logout's deprecated?
"Your Smart TV is probably ignoring your PiHole"
RT https://nitter.net/@chaosupdates
Die Tickets zum #rC3 werden für den Logged-In-Bereich benötigt: Interaktionen zwischen den Teilnehmenden, Workshops, Entdecken der Assemblies-Flächen und ein paar Überraschungen https://events.ccc.de/2020/12/03/rc3-ticket-update/
"Git LFS (git-lfs) - Remote Code Execution (RCE)"
"A Practical Introduction to Container Security"
https://cloudberry.engineering/article/practical-introduction-container-security/
Why would anybody use Resource Owner Password Credential Grant with Basic Auth in a mobile app developed in 2020?
Hello Fosstodon, I'm alcastronic. OpenSource user and fulltime hacker. Doing pentests and forensics. Found one or two bugs in OpenSource projects and hope to be of help fixing such. #introduction
Just posted this to Facebook and I'm done.
https://musings.tychi.me/so-long-and-thanks-for-all-the-fish
Don't worry fosstofriends, you're still stuck with me.
