0xD

@0xD@infosec.pub

This is a remote user, information on this page may be incomplete. View at Source ↗

⁨Comment⁩ on ⁨Bluesky says it won’t train AI on your posts⁩ ⁨⁨1⁩ ⁨week⁩ ago⁩:
It’s easier to use and has a recommendation algorithm.
⁨Comment⁩ on ⁨I found a weird IP address on my network that had transmitted an insanely small amount of data. I put the address in my browser and got this. what the heck am I looking at?⁩ ⁨⁨1⁩ ⁨month⁩ ago⁩:
Your command needs to look something like this:

nmap -Pn -sVC -p- (IP) -o scan

-Pn skips the availability check per ping

-sVC performs a version and a script scan so you get more information

-p- scans ALL ports

-o puts out a file called scan.nmap

If you want you can share that output afterwards for further info.
⁨Comment⁩ on ⁨Watch out, Microsoft Outlook could soon give away when you're sneakily working from home⁩ ⁨⁨1⁩ ⁨month⁩ ago⁩:
You sound like you’re really fun and easy to work with.
⁨Comment⁩ on ⁨NIST proposes barring some of the most nonsensical password rules⁩ ⁨⁨1⁩ ⁨month⁩ ago⁩:
It needs to be specific to be clear for its purposes. You can express everything in simpler terms but then you risk leaving things out of definitions. It’s basically legal speak.

Normally, you’d read the scope of such a document to see whether it fits your purpose, then cherry-pick the chapters necessary. If something’s unclear, you can google pretty much everything.

Doing that a few times will make it infinitely easier! You especially get to understand those broad, inaccessible definitions a lot easier.
⁨Comment⁩ on ⁨Linus Tech Tips uploaded a video showing how to block ads on Youtube. Which was removed by Youtube for community guidelines violations.⁩ ⁨⁨2⁩ ⁨months⁩ ago⁩:
They talked about it in the WAN show and they do not share that data as of a few months ago.
⁨Comment⁩ on ⁨Linus Tech Tips uploaded a video showing how to block ads on Youtube. Which was removed by Youtube for community guidelines violations.⁩ ⁨⁨2⁩ ⁨months⁩ ago⁩:
They talked about it in the WAN show and they do not share that data as of a few months ago.
⁨Comment⁩ on ⁨Linus Tech Tips uploaded a video showing how to block ads on Youtube. Which was removed by Youtube for community guidelines violations.⁩ ⁨⁨2⁩ ⁨months⁩ ago⁩:
SponsorBlock does not change anything about the money they get from sponsorships. So no, that does not help them more then otherwise.
⁨Comment⁩ on ⁨Kids⁩ ⁨⁨3⁩ ⁨months⁩ ago⁩:
You completely missed the point.

This was about the elegance of the answer, not the answer itself.
⁨Comment⁩ on ⁨Linkwarden - An open-source collaborative bookmark manager to collect, organize and preserve webpages | July 2024 Update - New iOS App, Full Page Copy, User Administration and more... 🚀⁩ ⁨⁨4⁩ ⁨months⁩ ago⁩:
Login pages ;D
⁨Comment⁩ on ⁨AT&T says hackers accessed records of calls and texts for nearly all its cellular customers⁩ ⁨⁨4⁩ ⁨months⁩ ago⁩:
Yeah, most effective illegal hackers are working for intelligence agencies or criminal organizations. The legal ones work for companies.

The ones “for the people” are very few.
⁨Comment⁩ on ⁨Elon Musk's X deceives users and breaches online content rules, EU says⁩ ⁨⁨4⁩ ⁨months⁩ ago⁩:
The bottom bar ain’t staying though if everyone does it.
⁨Comment⁩ on ⁨Authy got hacked, and 33 million user phone numbers were stolen⁩ ⁨⁨4⁩ ⁨months⁩ ago⁩:
Well from a professional here: It is.
⁨Comment⁩ on ⁨Authy got hacked, and 33 million user phone numbers were stolen⁩ ⁨⁨4⁩ ⁨months⁩ ago⁩:
A missing rate limit is a vulnerability, or a weakness, depending on the definition. You’re playing smart without having an idea of what you’re talking about. Here you go:

cwe.mitre.org/data/definitions/799.html

YouTube videos are public, and as such it’s not really hacking. If you were able to download private videos, for example, it would be a vulnerability like “Improper Access Control”. It does not matter in the least whether you use an “exploit” in your definition (which is wrong) or “just increment the video ID”.

The result is a breach of confidentiality, and as such this is to be classified as a “hack”.
⁨Comment⁩ on ⁨Novel attack against virtually all VPN apps neuters their entire purpose⁩ ⁨⁨6⁩ ⁨months⁩ ago⁩:
It’s not as vulnerable but it still is.

Interestingly, Android is the only operating system that fully immunizes VPN apps from the attack because it doesn’t implement option 121. For all other OSes, there are no complete fixes. When apps run on Linux there’s a setting that minimizes the effects, but even then TunnelVision can be used to exploit a side channel that can be used to de-anonymize destination traffic and perform targeted denial-of-service attacks.
⁨Comment⁩ on ⁨Why do people still eat beef when we know it's terrible for Earth?⁩ ⁨⁨6⁩ ⁨months⁩ ago⁩:
Imagine how many people you could feed if we would just eat what we fed the animals!
⁨Comment⁩ on ⁨natural sciences be like⁩ ⁨⁨7⁩ ⁨months⁩ ago⁩:
That’s your choice of perspective and it makes your life harder :)
⁨Comment⁩ on ⁨Critical 'BatBadBut' Rust Vulnerability Exposes Windows Systems to Attacks⁩ ⁨⁨7⁩ ⁨months⁩ ago⁩:
The Windows API is the direct access to OS functions. If you’re using the API it’s your responsibility to do it securely and protect your users.
⁨Comment⁩ on ⁨America Is Sick of Swiping⁩ ⁨⁨7⁩ ⁨months⁩ ago⁩:
Because good journalism isn’t free and the expectation that it is leads to societal downfall ;)
⁨Comment⁩ on ⁨How does the day-to-day work of not wearing shoes in the house?⁩ ⁨⁨7⁩ ⁨months⁩ ago⁩:
Yes, because dirt and germs stay exactly where they’re left and never move or multiply, and are always completely benign! Lol, I stand by my comment. :)

Also funny that you’re calling basically the rest of the world silly for figuring this out before you.
⁨Comment⁩ on ⁨How does the day-to-day work of not wearing shoes in the house?⁩ ⁨⁨7⁩ ⁨months⁩ ago⁩:
It was about your attitude, not the shoes ;) I am aware that not everyone cares about basic hygiene, that’s fine by me!
⁨Comment⁩ on ⁨How does the day-to-day work of not wearing shoes in the house?⁩ ⁨⁨7⁩ ⁨months⁩ ago⁩:
Also if you don’t already have it, get a longer shoe horn so you can also slip into robust shoes more easily!
⁨Comment⁩ on ⁨How does the day-to-day work of not wearing shoes in the house?⁩ ⁨⁨7⁩ ⁨months⁩ ago⁩:
Lmao living in filth and being proud of it. Congratz, you’re the epitome of intellect!
⁨Comment⁩ on ⁨"No, seriously. All those things Google couldn't find anymore? Top of the search pile. Queries that generated pages of spam in Google results? Fucking pristine on Kagi – the right answers, over and ov⁩ ⁨⁨7⁩ ⁨months⁩ ago⁩:
I’m convinced a lot of it is astroturfing. It’s just too perfect and consistent, with the perfect answers for everything and just the right amount of fear mongering.
⁨Comment⁩ on ⁨Liking an OS isn't a personality trait ❌⁩ ⁨⁨8⁩ ⁨months⁩ ago⁩:
It’s UI is just embarrassingly bad. Paint.net ftw
⁨Comment⁩ on ⁨Liking an OS isn't a personality trait ❌⁩ ⁨⁨8⁩ ⁨months⁩ ago⁩:
How?
⁨Comment⁩ on ⁨Steam :: Introducing Steam Families⁩ ⁨⁨8⁩ ⁨months⁩ ago⁩:
That’s two cheating incidents too many.
⁨Comment⁩ on ⁨What are y'all buying on the steam sale?⁩ ⁨⁨8⁩ ⁨months⁩ ago⁩:
Hah, I even got the pack with Pony Island because it was a few cents cheaper lol! Will check it out, thanks :D
⁨Comment⁩ on ⁨Experimental Video Game Made Purely With AI Failed Because Tech Was 'Unable to Replace Talent'⁩ ⁨⁨8⁩ ⁨months⁩ ago⁩:
The overall point may be relatively obvious, but the details are not.

Which steps of which processes is it good at, and which not? What can be easily integrated into existing tooling? Where is is best completely skipped?
⁨Comment⁩ on ⁨What are y'all buying on the steam sale?⁩ ⁨⁨8⁩ ⁨months⁩ ago⁩:
Fuuuuuuuuuuck Rockstar, sail the seas!
⁨Comment⁩ on ⁨What are y'all buying on the steam sale?⁩ ⁨⁨8⁩ ⁨months⁩ ago⁩:
Inscryption. What a masterpiece!