Daniel Cuthbert

Documentary photographer, old creaky hacker. Co-author of the @OWASP ASVS standard. Blackhat/Brucon Review Board.

Pod server available at randombit.stream/federation/mu

Daniel CuthbertDcuthbert@noc.social
2022-12-23

@anticomputer it’s only when you get a US large and you feel super lean wearing that ;)

Daniel Cuthbert boosted:
Vegetable Gremlin ⍼​👻vegetablegremlin@jorts.horse
2022-12-23

Actually cannot believe this. After 13 years, Sony/BMG have decided to take down Rick Astley's "Never gunna give you up" due to a dispute with Youtube over ad royalties.

It's completely blocked globally. Actual end of an era.

youtu.be/dQw4w9WgXcQ

Daniel Cuthbert boosted:
valhalla_dev (Mitch)valhalla_dev@infosec.exchange
2022-12-22

I have just learned that I have been laid off, three days before Christmas.

I have a lot of emotions right now, but instead of airing those out I'm focusing in a more positive direction. I am looking for a full-stack engineer or back-end/front-end developer position in the information security space. I am proficient in Python, JavaScript (React, Node, Express mainly) and am getting proficient in Rust. I have my GIAC Reverse Engineering Malware (GREM) certification and am comfortable in a systems engineering role with Rust or C/C++ as well.

Contract work welcome, full-time employment preferred. Appreciate the support and hope your holidays are off to a better start than mine!

Daniel Cuthbert boosted:
2022-12-22

Federico @apps3c has just published on the @hnsec blog a new article for his "Journey into IoT" series, in which he tears apart an #IoT device. This one is mostly about #UART communications.

A journey into IoT – Unknown Chinese alarm – Part 4 – Internal communications
security.humanativaspa.it/a-jo

The full series is linked here:
security.humanativaspa.it/tag/

IoT device teardownSaleae logic analyzerGhidra to the rescue!They are the same wave!
Daniel Cuthbert boosted:
2022-12-22

📣 The Intercept newsroom is pleased to join you all on the fediverse to share our journalism, and to help support a decentralized platform that aims to be a better place to be. Please consider boosting this post so more readers know we’re here.

Daniel Cuthbert boosted:
Josh Grossman (tghosth👻) :verified:JoshCGrossman@infosec.exchange
2022-12-21

DID YOU KNOW? The @owasp ASVS GitHub repo has specific issues looking for wider community input.

Filter the issues list by the "Community Wanted"/"Community Needed" labels to see these and provide your feedback and input. We need your help!

Link here 🙂:
github.com/OWASP/ASVS/issues?p

@manicode @Dcuthbert @vanderaj @elarlang

Daniel Cuthbert boosted:
2022-12-21

In a 'confidential' email notification sent by Okta and seen by BleepingComputer, the company states that attackers gained access to its GitHub repositories this month and stole the company's source code.

bleepingcomputer.com/news/secu

Daniel Cuthbert boosted:
Andy Armstronghexten@mastodon.me.uk
2022-12-20
Daniel CuthbertDcuthbert@noc.social
2022-12-20

When we did streaming for the PlanetSoulNetwork (2002ish) it was an exercise in really tweaking apache to handle thousands of users and produce music that didn't overwhelm my 1 MB ADSL line at the time.

randombit.stream/library/track

128kb hit that limit, anything more and it would kill and anything less sounded shit.

We did use RealPlayer, as we could have a 10mb file to share, which worked well

Daniel CuthbertDcuthbert@noc.social
2022-12-20

So, I think it's working but i'm not sure if there's an issue with CloudFlare's zero trust/caching setup whereby the public playlists arent properly showing, but for now, randombit.stream/library/playl is live

Daniel Cuthbert boosted:
2022-12-20

GitLab have released a blog detailing their bug bounty program year summary.

I did manage to snag a mention ("Most valid reports to our program") which was one of my goals this year. I aimed for the more prestigious titles, but the competition is tough and @yvvdwf  's RCE was definitely one of the highlights of the year. The same goes for @vakzz flag capture and taraszelyk info leaks. Learned a lot from all of them!

about.gitlab.com/blog/2022/12/

Daniel Cuthbert boosted:
Piotr Esden-Tempskiesden@chaos.social
2022-12-20

Hi I'm Piotr.

I design, manufacture and sell #electronics #pcb

I love #opensource #fpga, #embedded and increasingly #asic. I am a fan of @kicad

I have a #pnp (pick&place) machine in my garage.

I am the founder of @1bitsquared and maintainer of black-magic.org debugger and docs.icebreaker-fpga.org/hardw FPGA dev board.

I am in the process of manufacturing Glasgow (crowdsupply.com/1bitsquared/gl) Digital Interface Explorer.

Welcome all new and old friends! :)

A belated #introduction ;)

Daniel Cuthbert boosted:
Johannes :verified_paw: :donor:jkbecker@infosec.exchange
2022-12-19
  • Do I know any AppSec folks?
  • Do I know any WebAssembly folks?
  • And now comes the tricky bit: Do I know any AppSec folks who have WebAssembly security experience?

Please ping me :blobcatpeek:​

:blobaww:​ boost for reach very much appreciated!

Daniel Cuthbert boosted:
Ed Bottedbott
2022-12-18

One of the greatest "How it started/how it's going" examples, EVER.

(via Peter Kafka)

Screenshots of two tweets by Paul Graham. The first one mocks people for insinuating that "someone who's run Tesla and SpaceX" can't run a tech company. The second one says "This is the last straw. I give up." It contains a link to his new Mastodon profile.
Daniel CuthbertDcuthbert@noc.social
2022-12-18

@howelloneill@infosec.exche never had any friends at school or as an adult. Truly baffling

Daniel CuthbertDcuthbert@noc.social
2022-12-18

@xaniwoop hahaha oh wow that CD!!!

Daniel CuthbertDcuthbert@noc.social
2022-12-18

@cyberflamingo I did try mixcloud but the limits are lame mixcloud.com/dcuthbert/

Daniel CuthbertDcuthbert@noc.social
2022-12-18

@cyberflamingo ok ok, let me see what i can do

Daniel CuthbertDcuthbert@noc.social
2022-12-18

@anant OH!!!

Daniel Cuthbert boosted:
2022-12-16

Client Info

Server: https://mastodon.social
Version: 2025.04
Repository: https://github.com/cyevgeniy/lmst