Pinned toot
Pinned toot
Pinned toot

This instance was built to provide another home for the global InfoSec community.

It is run in a distributed architecture using PaaS and IaaS components from AWS. It was designed to be speedy, available and secure.

I myself am an InfoSec practitioner living in the SF Bay Area. My human interface supports English and German.

Have FUN and stay SAFE!

seb boosted
seb boosted

Support the Campaign to Stop Killer Robots! “Killing in the Age of Algorithms”, a NYT documentary examining the future of artificial intelligence and warfare nytimes.com/2019/12/13/technol @BanKillerRobots

The excitement you feel when your SOC reports the first phishing email that found a way around ATP Safe Links...

seb boosted

@Joschie07

to IOC.exchange! I hope you were able to find interesting content on the Fediverse already. If you haven't, please feel free to look at the people I follow.
In addition, you can use distsn.org/ to find other users that are interested in similar topics.

If you have any questions, feel free to reach out! We all help each other on the Fediverse and there are usually no attitudes at play 😃

seb boosted

When one of your vendors gets crypto-locked and you go through all contracts with them to figure out possible impact on your business...

Interesting times.

When your MSP downloads random tools onto your production servers that trip your AV... *sigh*

seb boosted
seb boosted

"One small way to get our independence and agency back from exploitative platforms is to build personal websites to share on instead. It’s a step to taking back control, and building a web that neither relies upon, nor feeds, the harms of Big Tech."

Great post by @laura

24ways.org/2019/its-time-to-ge

Operation Glowing Symphony | If you are into stories about US Cyber Command + Anonymous, this is the coolest podcast episode ever!

podcasts.apple.com/us/podcast/

seb boosted
seb boosted

I think I'm going to focus really hard on YourSecure.Life this year and really make that my business.

seb boosted

Linus Torvalds: Git is a distributed version control system, which means even if you lose a remote, you still have your local copy, so your code is safe, unlike centralized VCSes.

Developer Community: wut?

Microsoft: Hmm. How about you use our Visual Studio Online and push it to GitHub, both hosted on our computers, so that you don't have a local copy?

Developer Community: Yaay! Such innovation! Very cloud! Much wow! 🎉

Trump: Thou shall not use US services.

Developers: Where's my code? 😭

seb boosted

Also if you're red team/pentestering, look for logs! You might get lucky and find someone who's done this (or typed <username><password> into the username field and hit enter) #infosec
---
RT @kyhwana@twitter.activitypub.actor
<.< If you ever end up typing/pasting your password into the username field, (and it gets submitted) then consider it compromised and change it. x.x (Because it'll get logged somewhere and/or sent plaintext depending…
twitter.com/kyhwana/status/120

seb boosted

fun fact about #tor hidden services ("onion services" a.k.a. the dark web):

because there are only ever a few thousand hidden services live at any given time, many are somewhat vulnerable to traffic fingerprinting attacks.

if you run a hidden service, how can you make it less fingerprintable? currently, the best advice: avoid large web pages. make your pages small and dynamic.

Show more
IOC.exchange

INDICATORS OF COMPROMISE (IOC)
InfoSec Community within the Fediverse. Instance is supposed to be fast and secure. Everyone is welcome - Jump on Board!

Our blogs can be found here: https://rfc.ioc.exchange

Other Cyber Communities:
hackers.town
chaos.social
infosec.exchange
social.privacytools.io
cybre.space
librem.one

HAVE FUN and STAY SAFE!