Toggle navigation
TWunroll
TWunroll
faq
Contact US
#Infosec
Artur Janc
arturjanc
There's an underappreciated element to these stories that we really need to talk about. I want to focus not on the institutional racism and misogyny (more qualified people have taken
Read more
Kevin Beaumont
GossiTheDog
Mr Robot and the romanticised view of hacking in popular culture has a lot to answer for. The reality of cybersecurity as a career is it’s pretty boring, underdeveloped, nobody
Read more
Taz Wake
tazwake
Threat Hunting is the current "Hot Sexy" topic in defensive infosec. It is good and if your org is mature enough, it can be really valuable.However, *please* remember to turn
Read more
Lesley Carhart
hacks4pancakes
It is really important, in infosec and natsec, to understand if your adversary is making a tactical or a strategic choice. For instance, why are they moving laterally? Is it
Read more
Lesley Carhart
hacks4pancakes
A really good interview question to scope out how mature an infosec person’s understanding of corporate security programs is this:“How to you measure the success of a phishing test security
Read more
SecurityGuill 🛡️🌐
SecurityGuill
This thread updated includes all my #infographics so far, they present different terms related to Information Security It's an easy way to learn new things I hope it will
Read more
Jeremiah Grossman
jeremiahg
In AppSec, it's basically impossible to know for certain that you’ve found all the vulns in a given website. For similar reasons, the same is true in Asset Inventory. It’s
Read more
John Scott-Railton
jsrailton
BREAKING: Zoom settles with FTC, gets consent order prohibiting misrepresentations, agreeing to mandated information security program, 3rd party audits... Quick THREAD https://www.ftc.gov/system/files/documents/cases/1923167zoomacco2.pdf 2.
Read more
prin
fuxksniper
Some topics for self Learning#bugbounty #bugbountytips#infosec #CyberSecVillageTopic list(@ADITYASHENDE17@stokfredrik @harshbothra_@prateek_0490 @pry0cc(Please refine )[+]Sql Injection Attack[+] Hibernate Query Language Injection[+] Direct
Read more
Mark Loveless
simplenomad
I want to be absolutely up front about this. The whole SolarWinds thing has be seriously bothered. Here’s why (rant time)... 1/6 SolarWinds did not find the backdoor in Orion,
Read more
Moxie Marlinspike
moxie
I've had a bunch of discussions with people here about Signal PINs over the past day.I don't usually spend this much time on Twitter, so parallel to the direct discussion,
Read more
Richard Chirgwin
R_Chirgwin
The tech expert anti-mask, no-lockdown, we're-doing-fine Twitter bro club is by now as tedious as all fuck.Dude, *you* built a network, *you* are good at infosec, *you* got famous for
Read more
thaddeus e. grugq
thegrugq
The SolarWind backdoor was deeply integrated into the code, it was injected during their build process, and there is no way that the update server having a weak password was
Read more
Katelyn Bowden
medus4_cdc
I think the most toxic thing about infosec is the weaponization of humanity within the industry. People don’t trust each other, and everyone is always keeping info as ammunition for
Read more
Jackie ✨
find_evil
Some American infosec companies may need to clean house of a few key personnel soon. Urging folks not to be racist to Asian folks you work with please.https://twitter.com/baldingsworld/status/1337901178949050370 SQLite does
Read more
Mario “I have a model for that” Platt
madplatt
I’m thinking (maybe wrongly) that we, in #InfoSec, are still largely attached to the language of “People, process and technology” in how we design security practices.I don’t think that’s the
Read more
‹
1
2
3
4
5
6
7
8
9
10
›
By continuing to use the site, you are consenting to the use of cookies as explained in our
Cookie Policy
to improve your experience.
I agree