syncop @colt@nanao.cybtex.fr

Salut les Mastonautes ! :)

J'ai le plaisir de vous présenter un petit projet sur lequel j'ai travaillé ces dernières semaines:

MARL (Mastodon Archive Reader Lite) est une petite web app qui vous permet d'explorer en détail le contenu de votre archive de posts Mastodon, fichiers joints inclus (images, vidéos, sons), avec différentes options de recherche.

https://github.com/s427/MARL

🙏 Boosts appréciés! 🙏

(Plus d'infos dans le post suivant 👇)

#Mastodon #archive

Video: Hunting for Cobalt Strike in PCAP
https://netresec.com/?b=2410f02

I have successfully sent a toot from my #HamRadio (pictured below) using @xssfox ’s excellent APRS to Fediverse gateway.

I typed and sent it from my radio at Montgomery Park and it reached the internet via what’s called an I-Gate in Vancouver. I’m the king of the nerds on shift tonight.

#AmateurRadio

Quoting @kf7azy:

https://aprs.internaluse.net/@kf7azy/posts/204677194906936432/

Meta: OH, COME ON. ISN'T THAT BETTER NOW?

#meta #fediverse #threads
#MastoArt #krita

Hey fediverse,

As many have already heard last week, Dragos had to let go about 50 people. Tuesday last week was my last day on the job, and as of today I am slowly beginning my search for a new role while allowing myself plenty of time to unwind between roles (for a change).

My role at Dragos was to reverse engineer ransomware and I would love to continue reverse engineering malware (not just ransomware) in the future. I've worked in a few different threat intelligence roles over the last several as well.

I'm located on the US East coast and am currently looking to stay remote as relocation and travel are not an option for my family.

Any leads are appreciated! My LinkedIn profile can be found at the top of my profile as well.

#malware #reverseengineering #jobs #jobsearch

Your own LTE Network (SDR / Ubuntu)

https://open5gs.org/open5gs/docs/tutorial/01-your-first-lte/

Dangerzone 0.4.1 has been released! This release includes a native Apple Silicon version, performance improvements for large files, and several other bugfixes and improvements. Download links for all platforms can be found on our website:

https://dangerzone.rocks/

New major DDoS amplification factor discovered.

SLP, with a factor of 2,200

BitSight: https://www.bitsight.com/blog/new-high-severity-vulnerability-cve-2023-29552-discovered-service-location-protocol-slp

CureSec: https://curesec.com/blog/article/CVE-2023-29552-Service-Location-Protocol-Denial-of-Service-Amplification-Attack-212.html

CloudFlare: https://blog.cloudflare.com/slp-new-ddos-amplification-vector/

NetScout: https://www.netscout.com/blog/asert/slp-reflectionamplification-ddos-attack-vector

54k servers exposed online and ready for abuse

I released some scripts to manipulate hashquines.
https://github.com/corkami/collisions/
Cc @0xabad1dea @spq @retr0id @ESultanik

🚀 Pyodide 0.23 is out! Now featuring CPython 3.11.2 with official Tier 3 support for WebAssembly, FFI improvements, load time optimizations, and additional packages. We've also introduced an experimental SDL2 support for graphics applications in Python. 🎉

https://blog.pyodide.org/posts/0.23-release/

oh, the new dbx update has the trend micro bootloaders (CVE-2023-28005) revoked too

how nice

also: MS didn't update dbx on windows yet. (probably because CVE-2023-28005 JUST got fixed, i was told june/july for that dbx update actually), so people on windows who trust the MS UEFI third party CA are still vulnerable to shdloader until then!

REALLY great job MS! :D