codeEmitter
@code_emitter
Staff Security Engineer, Red Team @GitLab, GCPN, GWAPT, Experienced InfoSec Newb, Coder, CrossFitter, Musician, Internal combustion chamber enthusiast.
Defending your software supply chain is hard. Forming realistic attack scenarios to test your orgs detection/response capabilities? Also hard. Here’s an approach we tried that improved our readiness. Hope it helps you too. gitlab.com/gitlab-com/gl-…
Setting goals is easy. Finding effective strategies to meet those goals proves hard for me. I’ve started writing down goals, but also specific strategies in tandem. “I will do x for y hours on day z.” I also track if I do it or not. What strategies work best for you?
I had a good laugh that these two tweets just happened to show up right next to each other in my timeline @hellNbak_ 😅
"Learn not to add too many features right away, and get the core idea built and tested." - Leah Culver
@code_emitter present both an offensive & defensive perspective of an attack technique that hides malicious code in open source contributions & that reduce the likelihood of the mods being caught during review. Learn more about this #BHEU Briefing>> blackhat.com/eu-21/briefing…
I recently had a look at @gitpod and found two really nice bugs: about.gitlab.com/blog/2021/07/0…
From my perspective, the greatest benefit of story mapping is not the map. It is the discussions, discovery, and alignment that result from the process of creating a map. #agile
If the thing that stands between you and a better answer is rules, break the rules. #leadership
No one that knew Dan Kaminsky well is talking about DNS today. They are talking about kindness, boundless energy and positivity, spontaneous adventures, and how hard he worked to lift others up. Want to emulate one of the greatest hackers of all time? Let that be your guide.
Me: I’m language agnostic! Seems like a good idea to write this CLI in NodeJS because JSON and Node dependency evaluation! Also me: Let’s talk about JavaScript for infosec tools. No really. Let’s take a good hard look at JavaScript.
This one hit too close to home today 😆
To help out those dealing with the recent exchange series of breaches we at @TrustedSec are sharing some of our scripts we are using in triaging and hunting for compromises. github.com/trustedsec/def… Hope it is of use to the defenders out there.
How we use collaboration, iteration and async communication in @GitLab issues to ensure consistency across severity ratings and #bugbounty payouts. via @gitlab about.gitlab.com/blog/2021/03/1…
The mistake is not the failure. Not taking ownership and not learning are the failures.
United States الاتجاهات
- 1. #DWTS 15.7K posts
- 2. Chet 13.5K posts
- 3. Rockets 38.4K posts
- 4. Whitney 9,008 posts
- 5. Robert 113K posts
- 6. Shai 16.8K posts
- 7. #NBAonNBC 2,169 posts
- 8. #WWENXT 10.2K posts
- 9. #RHOSLC 3,365 posts
- 10. Alix 3,300 posts
- 11. Michael Jordan 10.1K posts
- 12. Amen Thompson 4,132 posts
- 13. Reed Sheppard 1,729 posts
- 14. Sengun 4,829 posts
- 15. Kevin Durant 15.2K posts
- 16. Ajay Mitchell N/A
- 17. #ThunderUp 3,570 posts
- 18. Brad Marchand 6,961 posts
- 19. Russ 33K posts
- 20. Tari Eason 1,326 posts
Something went wrong.
Something went wrong.