Super helpful list of ChatGPT alternatives with a focus on the licensing stuff

https://github.com/nichtdax/awesome-totally-open-chatgpt

We gave #ChatGPT the ability to browse the internet and asked it to answer a question for us (like a human would). It's pretty amazing and a little dystopian! https://www.youtube.com/watch?v=XssIIoHfBSM

We are now showing #EPSS scores and if a #vulnerability is on the #CISA "Known Exploited Vulnerability" list.

Also, we think the CISA logo looks pretty awesome lol

We are now showing #EPSS scores and if a #vulnerability is on the #CISA "Known Exploited Vulnerability" list.

Also, we think the CISA logo looks pretty awesome lol

It's not enough to squat a Mastodon handle that you never use.

It's not enough to automatically repost your Twitter timeline.

You have a chance to be part of something new. Something important. To shape it in the right way.

With all of us.

Breathe life into *this* community and *this* network by posting here, creating here, connecting here.

Be here now.

I love #ChatGPT 😂

This will only be a problem if someone gets a three-second recording of your voice

https://arstechnica.com/information-technology/2023/01/microsofts-new-ai-can-simulate-anyones-voice-with-3-seconds-of-audio/

"Yo dawg, we heard you like DAST, so we put a little DAST in your SAST so you can DAST while you patch (CVEs)"

*exits meme time machine*

You can now see which vulnerable functions are ever actually getting invoked in production via an agent. Demo vid here!
https://www.youtube.com/watch?v=B4xoOjKsWsg

The necessity of taking time off has become so apparent to me after having been on PTO for the past few weeks. I took almost the whole month of December off.

During that time, I realized a handful of things:
• I’d not really had time to truly rest or recover over the past decade, I’ve always opted to push through due to social conditioning or the inability to do so because of prior workplace constraints
• I’d barely taken any time off work, let alone any time to *actually* relax
• I’d become accustomed to judging myself strictly on my perceived productivity
• I’d not realized how tired and mentally exhausted I still was once I set different perimeters and expectations for myself

This vacation (well, stay-cation, really) reinforced how important my boundaries are and why having an always-on mentality is not conducive to mental or physical health. It forced me to reflect on how I view my time and what I expect of myself.

I told myself that I wasn’t going to focus on anything work or infosec in general, I wasn’t going to be too “output” focused, and that I would just allow myself to exist and operate in ways that made me feel relaxed or comfortable. In that time, I still accomplished things, but at my own pace. I didn’t beat myself up if I didn’t get something done within some arbitrary time I might have set for myself.

I’ve always felt very strongly about having a line in the sand when it comes to work and availability, but until recently, I hadn’t worked for people or places that genuinely understand and respect those sentiments. (Minus a few specific people here and there.) I even spent some time reflecting on this and how I’d been greatly taken advantage of in the past.

The job I have now allows me to take time like this, a “luxury” I’d never had before. Prior to working here, I was heavily burnt out. I worked non-stop, wasn’t “allowed” to really take time off, and was often “asked” (pressured) into working when I was sick. I experienced burnout after burnout after burnout with no reprieve.

I’m equally thankful as I am frustrated that it took this long for me to be able to do something like this. I think it’s gross the status quo is that people should prioritize work and build their lives around a job, as opposed to the reciprocate.

If you have time off to take, take it. Don’t let it roll over or have anyone convince you that you don’t need to take it. And, let that time be for *you*. (Or you and your family. Whatever works for your best interests.)

#Infosec #HumanTroubleshooting #Leadership #Vacation #SelfCare #MentalHealth #Burnout

i just saw a tweet about someone using ChatGPT to write a smart contract

this is going to be a busy year for me, isn't it

Happy holidays from the devs over at LunaSec!

Anybody working on any fun #projects over the break?

Cross posting from @gf_256's bird profile because this made me laugh.

> The amount of respect an IT pro pays someone is a measure of how tolerable that person is when it comes to getting things done, including the elegance and practicality of his solutions and suggestions. IT pros always and without fail, quietly self-organize around those who make the work easier, while shunning those who make the work harder, independent of the organizational chart.

https://www.computerworld.com/article/2527153/opinion-the-unspoken-truth-about-managing-geeks.html

#software #development #it #ict

Twitter is now blocking some Mastodon links by default, FYI. https://www.bbc.com/news/technology-63999452

#Vulnerabilities #Patching

If you find yourself filled with rage when you think about CVEs, we're offering free therapy sessions on our Discord server of InfoSec Professionals: https://discord.gg/2EbHdAR5w7

Your anger--I mean your *ideas* contribute to the OSS tools we're building on GitHub.

Boosts are appreciated!

If you find yourself filled with rage when you think about CVEs, we're offering free therapy sessions on our Discord server of InfoSec Professionals: https://discord.gg/2EbHdAR5w7

Your anger--I mean your *ideas* contribute to the OSS tools we're building on GitHub.

Boosts are appreciated!

Sneak preview of the CVSS Environmental risk adjustment work we've been building for the past few weeks. The idea is to help teams better prioritize CVEs by impact. Also you can ignore them by path if you want (like in your tests folder).

PR will be up on GitHub soon :)

Ever think about how 11 years ago the CEO of one of the biggest software distribution services (steam) said that piracy is not a pricing issue, but a service issue; and not a single other software company (games or otherwise) took that serriously and over the years added more and more DRM that broke the softwares functionality, causing customers to either find alternatives or pirated versions, costing companies billions in liscencing fees for DRM that not only drove away their customers but made their services less useable?

Ever think about how 11 years later that company still isn't publically traded, created software to allow cross-compatibility across operating systems, experimented with hardware that led to software solutions that vastly increased accessability to PC gaming, and went on to release a platform that encourages modification and experimentation by its users that have the option of using software not found in their ecosystem, thus proving their point in every way?