Thrilled to speak at Shmoocon this year! We’ll be presenting Luminaut, our open-source tool for detecting exposure of cloud resources from the inside-out to uncover PoC and shadow IT environments.
chapin :donor:
If you pick up the Python Digital Forensics Cookbook at the #shmoocon book swap today, find me in the floopy disk repair co shirt and I will sign the copy for you
Gourd husbandry was not on my #shmoocon bingo card
This novel web shell “hijacks the underlying Apache Tomcat webserver and silently inserts itself between Confluence and Tomcat–making itself available on every webpage ...”
Interesting CVE-2023-22515 post-exploit behavior discovered by Aon's Stroz Friedberg Incident Response practice.
“… patching Confluence to address CVE-2023-22515 and CVE-2023-22518 will not remediate the web shell if it has been deployed.”
See the blog post for insights on identification of this web shell on your #Confluence server.
chapin :donor: boosted:
How I made a heap overflow in #curl
Let me talk CVE-2023-38545 a bit
https://daniel.haxx.se/blog/2023/10/11/how-i-made-a-heap-overflow-in-curl/
#BSidesCT Tickets are now on sale! #CFP open until Sept 6. Join the fun on Sept 30th at Quinnipiac https://bsidesct.org #dfir #infosec #cybersecurity
As a part of #RAGBRAI , a 500 mile bike ride across Iowa in 2 weeks, I am raising money for the Children's Organ Transplant Association (#COTA ) honoring Hank Roy, my close friend's 1-year-old who needs a kidney transplant. The Roy's are the ones who introduced me to the event and I hope to ride it with them in the coming years!
All donations made to COTA for Hank will support a lifetime of transplant expenses.
If you'd like to contribute or read more about Hank and COTA, you can do so on our event page: https://cota.org/campaigns/COTAforHank/events/RAGBRAI--COTA-for-Hank #HangWithHankRoy #RAGBRAIGives
Also provides an advanced view for querying the underlying data including diagrams and details about the crash and conditions
#til that this resource exists with some good dashboards on different types of crashes: https://ctcrash.uconn.edu/
chapin :donor: boosted:
#NYC Subway sheds interactive map: https://subwaysheds.com/ shows an interesting view of how far you can go in 10/20/30/40 minutes with the subway + transfers + walking. Certainly seems to plot best case scenario, but the negative space is an interesting highlight.
Why is there no emoji for grilling?
chapin :donor: boosted:
My little Rust crate made the 250 stars mark on Github.
Go boitjie!
If I can get to learn how to do Rust macros properly, I'll even settle for a 1.0 release.
chapin :donor: boosted:
So I'm looking at `git log Misc/NEWS.d/next/Security/` in CPython repository and I see a commit message that's literally:
```
Update Lib/subprocess.py
```
…and I'm thinking… just sigh.
https://github.com/python/cpython/commit/51b079a2d6c9a7a852c04823ef4180c36eed682b
@BugFireIO I found this playlist helped reinforce the concepts in the books: https://www.youtube.com/playlist?list=PLai5B987bZ9CoVR-QEIN9foz4QCJ0H2Y8.
Also I have started re-writing my chickadee GeoIP enrichment tool from Python to Rust: https://github.com/chapinb/chickadee-rs.
Feel free to share on your process/projects!
@BugFireIO Heh slow and steady! I really enjoy #rust and have found it more approachable than the internet prepared me for. Are you at #shmoocon? If so let's chat more
Excited for my new book thanks to the #ShmooCon book swap. If you picked up Python Digital Forensics Cookbook, feel free to say hi!
@ThinkstCanary Excited about the new credit card tokens! A lot of neat use cases for this (and your other) tokens. #shmoocon
Check them out here: https://www.canarytokens.org/generate
chapin :donor: boosted:
Thank you to everyone who attended / streamed my talk! "Ya Got Trouble (and SLSA may help)"
Hopefully you are all ready to review and update your software writing and build processes to match the SSDF (tip: start with SLSA)
Thank you #shmoocon
Client Info
Server: https://mastodon.social
Version: 2025.04
Repository: https://github.com/cyevgeniy/lmst