scriptjunkie @sj@social.scriptjunkie.us
Admin
https://www.scriptjunkie.us/
#infosec #security
the rules: https://social.scriptjunkie.us/about/more#the-rules-of-social-media
Joined May 2019
scriptjunkie
boosted
scriptjunkie
boosted
CVE-2023-21036 / acropalypse is absolutely bonkers.
Apparently for 5+ years the cropping / editing tools for screenshots on Google Pixel phones was only overwriting the start of the screenshot PNG file, but not truncating.
All screenshots shared for the past 5+ years might have data recoverable from them. Demo available at https://acropalypse.app/
Google still hasn't communicated anything on this.
(h/t ItsSimonTime on Musk's site)
Understanding a Payload's Life (featuring Meterpreter & other guests)
by @DaniLJ94
<- this is great
https://attl4s.github.io/assets/pdf/Understanding_a_Payloads_Life.pdf
Isn't the MiG-29 and its engines etc. made in Russia? So how do the various allies supplying them to fight against Russia get spare parts and maintenance stuff? #lazyweb
scriptjunkie
boosted
stop using discord as a wiki
stop using discord as a forum
stop using discord as a file host
stop using discord as a storefront
discord is an instant messenger
it is a centrally hosted cloud service
it will eventually shut down
it has no archival functionality
moving away from IRC was a mistake
anti-discord action
stop using discord as a forum
stop using discord as a file host
stop using discord as a storefront
discord is an instant messenger
it is a centrally hosted cloud service
it will eventually shut down
it has no archival functionality
moving away from IRC was a mistake
anti-discord action
scriptjunkie
boosted
I argue we (#curl) should NOT pay docker. Not give in to extortion. This might mean that someone else soon suddenly will register our name and can serve whatever image they want there. 5 *billion* pulls indicate there's a user or two that might fall victim for this.
That's on docker, not us.
scriptjunkie
boosted
beware the ads of merch
Hey if anybody wants a discount code to @LetapeSATX
let me know. Great bike ride/race on April 16. By the way, @LetapeSATX - update your bio!
I need a browser extension to detect news articles that are just "[other publication] reports that..." and automatically take me to the original breaking article so I can see the original quotes and not a rephrase.
In the past you needed two whole people to run a technical, but now, you can just have the car drive itself while you start hosing down up top.
The graph of what the GPT's are good at is roughly the inverse of the corresponding majors' expected salaries (2019 data).
https://twitter.com/gf_256/status/1635706332723413015
scriptjunkie
boosted
scriptjunkie
boosted
scriptjunkie
boosted
scriptjunkie
boosted
Busy day at Stonehenge as the stones are moved forward one hour.
#springforward
scriptjunkie
boosted
scriptjunkie
boosted
Finally, an explanation: a vast conspiracy orchestrated by @lcamtuf to sell more books
https://twitter.com/lcamtuf/status/1634243785768173569
Signal automatically trusted a phone without sim but Google services. But cannot trust a phone where it has been installed for the last 3 years and is connected to the phone number. "We fight for your privacy as long as you agree to be spied on by Google"
https://ploum.net/2023-03-09-losing-signal.html
Admin
https://www.scriptjunkie.us/
#infosec #security
the rules: https://social.scriptjunkie.us/about/more#the-rules-of-social-media
Joined May 2019
