Huge thank you to the @jawncon organizers and volunteers; a really fun conference with a great vibe (and still the coolest badge ever). You can find a recording of my talk (covering wardialing, AOL, internet scanning, and lots of other random things) online at: https://youtu.be/-mkJzOy3P1U?t=8117
home > posts
Slides from my (super short) @jawncon 0x1 talk - A Pebble Down the Well:
https://hdm.io/decks/JCPEBB~1.pdfCouldn't make it[1] to @jawncon 0x1? Grab the live stream at https://www.youtube.com/watch?v=-mkJzOy3P1U -- Kai Pfiester is wrapping up "Leveraging the Adversarial Mindset to Become a Better Cybersecurity Professional" and I'm up next @ 11am ET with "A Pebble Down the Well: Network Exploration". Find the full schedule at https://jawncon.org/schedule0x1.html
1. You missed out on the most amazing badge ever (mini-Hayes-modem; functional and WiFi linked!)
Tonight's Go meetup in Austin, Texas is located within Capital Factory on the 16th floor in the Antone's room. The meeting starts at 6:30 and we have at least one talk queued up. There will be pizza, drinks, and generally nerdiness around Go!
ATX Golang Meetup is this Wednesday in Austin, Texas - https://www.meetup.com/atxgolang/events/301842145/
Have a neat Go project you want share? A short talk? Swing on by! There will pizza & drinks!
My keynote from CypherCon 7 is now online: 25 Years of Years of Vulnerability. Thanks again to Michael Goetzman and the whole @CypherCon crew for a warm welcome and an amazing event!
One of the funny bits that didn't make it into our sshamble talks in Las Vegas: OpenSSH for Windows writes to the event log, but no longer filters dodgy characters, so you can troll your local admins:
(recent webcast version at https://www.youtube.com/watch?v=G5yRpdNbdBs)
This looks amazing: THE JUNKYARD: An End-Of-Life Pwnathon (February 21-22, 2025) DistrictCon: https://www.districtcon.org/junkyard
runZero Hour is happening NOW, livestream at: https://www.youtube.com/watch?v=6Mj1AnygFk8
Our research team will be unpacking everything from the latest threats and risky devices to the sneakiest vulnerabilities hiding in IT, OT, IoT, remote, cloud, and mobile environments.
Here's a sneak peek at today’s session:
👉 Take an OT deep dive with Blain Smith featuring the Automatic Tank Gauge (ATG) and PC-WORX protocols along with their security frameworks.
👉 Hear from @TomSellers on how RDP has adapted with Windows over the years to become secure by default and why it is more important than ever to uncover RDP misconfigurations in your networks.
👉 @rk will chat about vulnerability enrichment and wrangles our Rapid Response round-up.
👉 Tyler Diderich will share cool new platform features inspired by our customers.
"Defend against vampires with 10 gbps network encryption" by Romain Huon includes a ton of useful tips/tricks for performance tuning on 10GbE wireguard/vxlan links: https://www.synacktiv.com/en/publications/defend-against-vampires-with-10-gbps-network-encryption