I was talking to a few students over the past few weeks, and it suddenly dawned on me. The SEC588 Cloud Pen Testing course has almost no reason not to come in person. Why is that? All students get the 4-month OnDemand Bundle with Lab access included with all classes!

Happy America Day for 2025.

I spend the last few days on a new project. Get IPv6 running in my homelab. The dual horned nature of my house made me hesitant. I learned a ton along the way. Probably will do a video or blog post soon. #IPv6 #Homelab

I am speaking at the South Florida ISSA Meeting Tonight. It's in the same venue as the HackMiami conference. If you are in the area and want to hang out, here are the details: www.meetup.com/south...

I have not been active on social media for the last 45 days. My ability to share sharply declined. After some deep thinking and professional life changes, I can now share more freely—such a burden lifted from my shoulders. Videos are coming soon.

If you have ever taken #SEC588, I have always said that SAML needs to go away. Here is a nasty bug in a library where you can bypass it altogether mostly: workos.com/blog/samlstorm Just s#SEC588nd a signed request, and you will be good to go.

If you see the following header in your weblogs and your running next.js ... well... x-middleware-subrequest: middleware:middleware:middleware:middleware:middleware #CVE-2025-29927

I just wanted to go on record in saying if the internet ever went dark, it is truly when this website is gone.... www.zombo.com

This is an excellent writeup by the Objective See folks. I had to ensure I was still reading about an exploit halfway through the beginning because the build-up was so good. If MacOS and Exploiting MacOS is your thing, this is a great read: bit.ly/4bTsGnZ

I'll more than likely discuss this at some point in a video. This Apache Tomcat bug is pretty bad. The POC is dead simple and it will probably be easy to work around firewalls. Patch! www.darkreading.com/... 1/n

Let me be crystal clear: the person who wrote the @watchtowrcyber blog is correct about deserialization gadgets. The video gives some thoughts, but I wanted to add context. Amazing work from @sinsinology 1/n youtu.be/mJTo_YGwYzY

Is that Tomcat bug a non-issue? I'm hesitant to say so, primarily because of the many horror show bugs I've seen in Tomcat servlets in the past. Do I suspect there will be more issues on the internal networks? Yes. Comment Below Video: youtu.be/Du4d7Q4R51Q

The jc-action/changed-files attack, was it new and novel? If you look at the gist of the python memdump.py script, you may have noticed that this was just a copy of an existing set of research studies from pwnhub and others—link in the video's description. youtu.be/lqPoWd7CbTE

This is super interesting. An attacker gained access to a popular "plug-in" (the best way I could describe it) to your CI/CD pipeline in a Github Action that would do change file detection in your runs. www.stepsecurity.io/... 1/n

The other day, one of my coworkers asked me a question, and it was around: what do you currently recommend for C2 in a Red Team Engagement? Now, this question comes up a ton. In practice, we have been using Cloudflare because it just "works," but what if that no longer works?

On the road, so I recorded this over the week. Bug fixes for last week. bit.ly/4kNdqgk

Do you all think Manus AI Is a threat. I thought I'd give some folks a fun one for a video update: bit.ly/41ylBEo

Healthcare IT is a total mess. Microsoft is injecting some funding in it: bit.ly/4i4ts3I

Everyone is alarmed by a "Webcam" used to deploy ransomware as a nothing-burger. The article should highlight that ransomware actors are not just automating the attack but actively looking into a network. If you have a vulnerable non-windows device, it will be used.

You want to execute malware in a sandboxed environment. You want to do this self-hosted or in the cloud in your environment. What do you choose? (Yes, I know that online analysis tools exist). Comment Below #security #cybersecurity #onlinesafety #privacy #technology

Quantum Curious? Today's topic is Post Quantum Cryptography, more or less. #security #cybersecurity #onlinesafety #privacy #technology #crypto bit.ly/3XuoNja

I don't yet know the full implications of this, but being able to "patch" your Microcode such that, idk, XOR compares always return true for specific functions would be bad. bit.ly/3F4V3TP

Yesterday on a Podcast Interview I did with the ktrlpanel I ended it with a butchered quick explaination of Shors Algorithm and Quantum Computing. For those curious the idea is this. Quantum Computing should be able to, using a QFT, factorize prime numbers quickly.

I'm posting this here while experimenting with different media. The focus, currently, is on short-form videos on a different Cyber Security Topic (bit.ly/YTMosesFrostShow). I am however going to expand that at some point.

Mozilla Foundation is changing its Terms of Service and has decided to remove its promise never to sell your data, I.E., they can sell it. This has people in a tizzy; what alternative web browsers do you recommend? Comment Below! bit.ly/3QEAekE

Can multiple LLMs working in Tandem evaluate CTF Challenges? Some interesting research coming out of NYU. arxiv.org/html/2406....

Daniel Grzelak has released Awseye, a so-called Shodan for AWS, an OSINT and reconnaissance service that tracks and analyzes publicly accessible AWS data awseye.com

Modifying Impacket to avoid detection

I’ve to say that I’m impressed by how @xbow.com managed to identify this SSRF vulnerability (and bypass a MIME filter on its way) 🤖

Makes sense… but not what I expected… aws.plainenglish.io/you-have-mis...

chrome://serviceworker-internals/ That is all...

The Azure Service Bus emulator is finally here! 🎉🎉🎉 This will make local development and local testing so much easier and also cheaper!👌🏼 But remember, as with any emulator, you still want to test against the real service as well 😅

Credit to @campuscodi.risky.biz with surfacing this one... and yeah... it didn't get much coverage outside of risky.biz

Emulation in the browser is BACK at @archive.org - 250,000 programs playable with a click. But let's get you to our #1 title: archive.org/details/msdo...

#Linux lacks a resource like the Windows Master File Table ($MFT). I've developed this #Velociraptor artifact to collect metadata from files and folders recursively in selected paths to create a bodyfile. This may bring an MFT-like feel to filesystem analysis. #dfir github.com/chrisdfir/Ve...

If you wanted to hear about the sessions the Azure Security podcast talks through it with Michael Howard & Nic Fillingham. azuresecuritypodcast.azurewebsites.net.

First, if you aren't familiar with oAuth application consent, we did a few sessions on this topic a few years ago. You can watch the one @baileybercik.bsky.social and I did www.youtube.com/watch?v=oqb3.... Start by checking what your current application permissions are. /2

Please like and repost to let everyone know. Don't forget to add your profiles to bluesky.ms

🍎🐛🎙️Following my #poc2024 talk we are releasing a blogpost series at Kandji, detailing the vulnerabilities of diskarbitrationd and storagekitd I discussed in my "Apple Disk-O Party" talk. First part is out, and covers CVE-2024-44175. www.kandji.io/blog/macos-a...

🦋 Introducing bluesky.ms 👏 = A crowdsourced database of anyone and everyone in the Microsoft community on Bluesky. 👉 Add yourself and anyone you know today 👈 🫂 All are welcome. This is my v1, I'll add options to directly follow from the site itself but first 👇 LET'S FILL IT UP! 🙏

I've been nominated for Mentor of the year for the SANS Difference Makers Awards. Please vote for me? 🙏 sans.org/u/1sVU

Cross posting is a challenge and maintaining so many disparate feeds suck. Anyone have any good ideas for managing the deluge of platforms?

cat << EOF > post