seb - buttons are toys! @seb@ioc.exchange
Mod
Cyber blue team leader by day, tinkerer/hacker at night.
Designing secure systems and traveling the world is what I like.
Unfair, harsh, inconsiderate behavior is what I don't like.
Joined Nov 2019
Managing #infosec initiatives through NIST CSF seems to be good/best practice. What are you all using to track the maturity of your cyber program?
Sunday morning is a great time to post an #introduction …
Hi! I’m a #infosec professional, who has been into #foss and #linux for 25y. To give back to the community I run https://ioc.exchange and https://sfba.social .
I live in the San Francisco Bay Area with my wife and two kids. I came here 11y ago from #berlin , which is my hometown. My alma mater is #tuberlin , where I studied computer science. I was born in East Berlin, behind the iron curtain.
Be kind and hack the planet!
#infosec fellas who ended up on the overloaded mastodon.social and mastodon.online instances!
Give them a break and migrate to one of the infosec focused instances:
https://ioc.exchange
https://infosec.exchange
https://freeradical.zone
https://hackers.town
https://chaos.social
If you are looking for a great reference about CSOC/SOC operations, check out Carson Zimmerman's "Ten Strategies of a world-class Cyber Security Operations Center"
#infosec fediverse! What's the best paper/book you have read on zero trust?
#infosec professionals!
Any tips on how to better communicate that system maintenance (incl. patching) needs to cover ALL devices on the network?
Browsing the Conti.news this morning. A lot of German speaking victims lately, seems like they have learned how to navigate German Windows Server versions. #infosec
Desktop Linux Security Review for Elementary OS - The new Leader in this Review Series! Elementary OS collected 13 out of 18 points and looks great along the way. #linux #infosec
https://decrypt.fail/desktop-linux-security-review-elementary
Should we start suing web hosting companies, when they don’t patch their servers and as a result the websites get compromised and used for malware operations, which then creates a bad reputation for my domains? #infosec
Finished my security review on Garuda Linux - Such a beautiful distro! It received 10 out of 18 points - An average score.
https://write.as/decrypt/desktop-linux-security-review-garuda-linux
Desktop #linux security review for 
is in!
Interesting that it downloads updates during install but not actually installs them.
Pop!_OS security review done. They missed out on a lot of points because of two ignored vulnerabilities 😞
Finished review of Linux Mint: 13 out of 18 points - Very mature distro!
https://decrypt.fail/desktop-linux-security-review-linux-mint
Third security review for #linux desktop distros done:
https://decrypt.fail/desktop-linux-security-review-manjaro
(Given the stuff I saw when testing and read online, I'm bracing for impact...)
Paper about detecting ransomware activity #infosec #cybersecurity
Second security review for #linux desktop distros done:
https://decrypt.fail/desktop-linux-security-review-endeavouros
Need to quickly assess installed sw on an #arch #linux box for vulns?
#Log4Shell is showing us that the current state of vulnerability scanning technology is insufficient. Who has ideas on how to improve in a way that would make it possible to properly handle a #log4j event?
Mod
Cyber blue team leader by day, tinkerer/hacker at night.
Designing secure systems and traveling the world is what I like.
Unfair, harsh, inconsiderate behavior is what I don't like.
Joined Nov 2019
seb - buttons are toys!'s choices:
