dreadl0ck
@dreadcode
Tortures computers for fun and profit. Interested in network security monitoring, machine learning, Golang and Rust. Shellscript ninja. Will debug for food.
قد يعجبك
Published my Bachelor Thesis: "Implementation and evaluation of secure and scalable anomaly-based network intrusion detection" along with my network traffic analysis framework: github.com/dreadl0ck/netc… #golang #IDS #NSM #DeepLearning #ML
I'm glad everyone has discovered memory safe languages after several decades. Now can we start looking at secure package management or are we just going to import memory safe rando libs from ninja876 on Github forever?
My dystopian vision of an AI-powered future is that LLMs drives down the cost of generating long text even further, and the only way for readers to keep up is to use LLMs to summarize.
Okay here's a ridiculous (but true) take: word processing is bad. Before it, document length was bounded by the human capacity to copy long-form text. After word processing, the tax & legal codes grew without check. And became incomprehensible to anyone but career experts.
Guest: “Is that a RAM stick glued to your door?” Me: “Yes. Old memories.”
Best security quote I heard this week: "Do you want to mitigate against an auditor, or against an attacker?"
Bellingcat and investigative partners @derspiegel and @the_ins_ru have discovered a hitherto secretive group of engineers involved in Russian missile strikes on Ukraine. These strikes have killed hundreds and left millions without heating or power bellingcat.com/news/uk-and-eu…
You can force any v8/Electron process to execute arbitrary js code (child_process, http, etc) by forcefully enabling and abusing the builtin debug mechanism ... here's VS Code executing Calc, but I suspect any Electron app is susceptible 🔥 it works with SIP enabled on macOS
@BadgeteamNL thanks for the great #MCH2022 badge - here's my Music Computing Handheld app, to be found in the Hatchery in ESP32 - Games. Happy soloing
Do you know you can set up a custom Transform server in #Maltego? The #DittoTRX Transform developed by @dreadcode can be used to investigate #IDNHomographAttack and imposter domain on various websites. Learn how to set it up here: maltego.com/blog/dittotrx-…
The Trojan Source vulnerability allows supply-chain attacks on software written in C, C++, Go, Java, Javascript, Python and Rust. We're releasing details after a 99-day coordinated disclosure period, and some of these compilers will be patched quickly. See lightbluetouchpaper.org/2021/11/01/tro…
Wow, just realized C is turning 50 next year. Not sure how to tell students that we're learning about security problems caused by a language that's half a century old.
Memory safety in a huge codebase is hard. We've published some work and an update on our work in the Chromium codebase - security.googleblog.com/2021/09/an-upd….
We're releasing CapLoader 1.9 today! 🔁 Better detection of periodic beacons 🔍 More L7 protocols identified 🚀 Faster 🛠️ Improved filtering of flows 🔭 OSINT lookups w/ CIRCL, ThreatFox, RIPEstat etc. netresec.com/?b=2159bda
Ever dreamed about analysing a PCAP file properly in Maltego? Next netcap release will have a full blown Maltego integration, currently have ~200 entities, ~120 local transforms and 4 machines :) #madewithmaltego #golang #netcap
Open sourced my Maltego (@MaltegoHQ) integration for @evilsocket's ditto tool and wrote a blogpost about it: dreadl0ck.net/posts/ditto-trx Happy graphical link analysis! #madewithmaltego #golang #ditto
United States الاتجاهات
- 1. Emiru 9,971 posts
- 2. Ohtani 230K posts
- 3. Dodgers 274K posts
- 4. Good Saturday 19.6K posts
- 5. World Series 64.5K posts
- 6. #HeartofTaehyung 42.9K posts
- 7. Massie 34.5K posts
- 8. Carson Beck 17K posts
- 9. Babe Ruth 3,726 posts
- 10. Louisville 29K posts
- 11. TOP CALL 10.1K posts
- 12. Sam Harris 1,269 posts
- 13. Nebraska 17.8K posts
- 14. FDV 5min 2,976 posts
- 15. Talus 16K posts
- 16. TwitchCon 26.1K posts
- 17. Miami 103K posts
- 18. #SEVENTEEN_NEW_IN_LA 65.3K posts
- 19. George Santos 91.3K posts
- 20. FDV Surge Alert N/A
Something went wrong.
Something went wrong.