HGB
@hgb.crowstrike.zip
๐ค 447
๐ฅ 884
๐ 138
DE&TH I like playing with malware, writing Sigma rules, and hoarding combo lists.
pinned post!
Check out this thing I did!
add a skeleton here at some point
11 months ago
0
11
3
reposted by
HGB
Taggart
about 1 month ago
I've just about had it with the vagaries of true/false positive/negative. Humbly presented: a more descriptive alternative.
loading . . .
The Tyranny of False Positives
It's time to move beyond true/false, positive/negative.
https://taggart-tech.com/false-positives/
0
3
6
reposted by
HGB
Joseph Cox
2 months ago
We just translated a wave of our ICE coverage into Spanish. No paywall, no email signup necessary. From leaks about Palantir's work with ICE to ICE's new facial recognition app, we think there is a massive public interest in this info. Read why and support us here:
www.404media.co/were-publish...
36
4077
1801
reposted by
HGB
Taggart
3 months ago
A reminder that you can get 50% off the new version of The Homelab Almanac with code OMGVERSIONTHREE until the end of June! I'm really happy with the new version, and I think you will be too.
taggartinstitute.org...
loading . . .
The Taggart Institute: Master Your Craft
The Taggart Institute exists to provide low-cost, high-quality technology training to everyone in a welcoming, supportive community.
https://taggartinstitute.org/p/the-homelab-almanac
0
5
2
Some days on a thrunt, the TAs are indistinguishable from the engineer who is highly motivated to break the rules. Using a scheduled task to run net.exe to add yourself to the administrators group on every login is commitment.
4 months ago
0
2
0
reposted by
HGB
Nathan McNulty
4 months ago
Uhh, apparently we have Entra SSO on Linux now? ๐คฏ
learn.microsoft.com/en-us/entra/...
2
22
4
reposted by
HGB
Taggart
5 months ago
I put together some thoughts on the mitigation advice regarding "ClickFix" attacks.
taggart-tech.com/cli...
loading . . .
ClickFix Fixes Ranked
The cool thing about ClickFix remediation is nobody walks away happy.
https://taggart-tech.com/clickfix/
2
6
6
I wish someone would reward my work with Ambrose and Gunnel.
6 months ago
0
0
0
I've watched 25 movies so far in 2025. Only 2000 to go.
7 months ago
0
0
0
reposted by
HGB
Matthew Garrett
7 months ago
Superintendent Chalmers: fentanyl labs? Principal Skinner: yes Chalmers: that the law enforcement folks were leaving alone? Skinner: yes Chalmers: localized entirely in Canada? Skinner: yes Chalmers: may I see them? Skinner: ...no
3
93
8
RMMs are RATs you pay for. Thanks for attending my TED talk.
7 months ago
0
1
0
reposted by
HGB
Dad Jokes
7 months ago
Little known fact: Before the crowbar was invented. Crows simply drank at home.
10
280
30
reposted by
HGB
8Bit
8 months ago
Regex is how I imagine eldritch horrors work. You look at it and it makes no sense and it's scary. As you stare, for a split second there is understanding. The universe expands before your eyes, reality unraveling. Then the madness sets in.
2
28
5
8 months ago
0
1
0
The NSA being asked to delete the word "privilege" is so funny. Goodbye every DFIR report.
8 months ago
0
4
0
I think it is thematically fitting that Donald Duck is a ska fan.
8 months ago
0
0
0
reposted by
HGB
eve6
8 months ago
I feel like Beyonce has a ska record in her
212
8195
874
reposted by
HGB
Matthew Garrett
8 months ago
Tabletop scenario: Elon Musk walks in and pulls the big "Disable 802.1x" lever like that scene in Ghostbusters, what controls do you still have
3
242
19
www.reuters.com/world/us/tru...
Wut
loading . . .
Trump pardons Silk Road founder Ulbricht for online drug scheme
U.S. President Donald Trump on Tuesday pardoned Silk Road founder Ross Ulbricht, who was serving a life sentence after being convicted of running an underground online marketplace that was used by thousands of drug dealers and others to conduct over $200 million worth of illicit sales using bitcoin.
https://www.reuters.com/world/us/trump-pardons-silk-road-founder-ulbricht-online-drug-scheme-2025-01-22/
8 months ago
0
2
0
Pick it up!
#vinyl
#ska
8 months ago
1
2
0
17 million in a single hand ๐
8 months ago
0
0
0
Psychic by Darkside might just be a perfect album.
8 months ago
0
0
0
reposted by
HGB
beetle moses
9 months ago
122
25847
3334
Even now, I really miss this city.
#vinyl
#punk
#losangeles
9 months ago
2
13
1
When my wife is out of town, I listen to weird German post punk at 7am.
#vinyl
#postpunk
9 months ago
1
6
0
reposted by
HGB
Taggart
9 months ago
I am so excited to finally show you the stable alpha of Venture, a cross-platform GUI for parsing Windows Event Logs!
github.com/mttaggart...
Venture was developed with support from my employer with the intent of creating an open source tool for all. Thank you, UCLA Health!
loading . . .
GitHub - mttaggart/venture: Venture: Cross-Platform GUI tool for parsing and analyzing Windows event logs
Venture: Cross-Platform GUI tool for parsing and analyzing Windows event logs - mttaggart/venture
https://github.com/mttaggart/venture
2
9
7
I went record shopping today and I am going back to my roots. Like most I really developed my taste in music as a teenager and I was very into this drone-y post punk sound.
#vinyl
#interpol
#postpunk
9 months ago
0
8
1
My daughter today was sitting at my desk and said she was working. When I asked what her job was she said "oh, I just do work". I feel this in my core.
9 months ago
0
1
0
reposted by
HGB
Taggart
9 months ago
Hey Bsky! I'm writing a piece on Python package security, and I'd really like to interview someone involved with the Debian Python team or someone who's a Fedora package sponsor to talk about the process. If you or anyone you know would be up for a 30-minute interview, drop me a DM! Thank you!
0
7
13
I've been doing chores all day. Unclogged some drains, tightened some handles, hung a mirror, and put up some smoke detectors. Also I got a pedicure today. Time to chill with some vinyl.
#punk
#vinyl
#fugazi
9 months ago
1
5
0
Well it turns out InTune Device Compliance policies don't matter at all.
labs.jumpsec.com/tokensmith-b...
Thankfully you can still detect intrusions with some older detection techniques like risky sign ins and looking for Check My Sign In (cmsi) events from the InTune company portal ID
loading . . .
TokenSmith - Bypassing Intune Compliant Device Conditional Access | JUMPSEC LABS
Conditional Access Policies (CAPs) are the core of Entra IDโs perimeter defense for the vast majority of Enterprise Microsoft 365 (M365) and Azure environments. The core ideas of conditional access ar...
https://labs.jumpsec.com/tokensmith-bypassing-intune-compliant-device-conditional-access/
9 months ago
1
0
0
#vinyl
#punk
9 months ago
0
1
0
My daughter is home sick so I'm listening to records and cleaning. So far on my playlist has been Mustard Plug, The Adolescents, and The Descendants.
9 months ago
0
1
0
How many tobacco related crimes does the ATF actually pursue?
9 months ago
0
1
0
Chili day!
9 months ago
1
1
0
I just threatened my wife to throw away all of our mismatched Tupperware and replace them with the vastly superior deli cups and I might just do it...
9 months ago
0
0
0
reposted by
HGB
Anthony Iannaccio
9 months ago
Mister Rogers never misses
198
25120
8713
#punk
#australia
9 months ago
1
3
0
reposted by
HGB
Horkos
9 months ago
This is the game. Be mad if you want, but if the IC pulled this off in China, youโd think it was based. This is SolarWinds and OPM and a dozen other examples: espionage at scale facilitated by poor code in products and lack of security hygiene. Be mad if you want, but donโt pretend this is unfair.
add a skeleton here at some point
4
54
19
Dune taking place 10,000 years after the butlerian jihad was a mistake.
9 months ago
0
0
0
I bought myself some more gator sauce as an early Christmas present and I am very pleased.
9 months ago
0
0
0
reposted by
HGB
Christophe Tafani-Dereeper
10 months ago
New research: We've been monitoring a threat actor publishing dozens of trojanized GitHub repositories targeting threat actors, leaking hundreds of thousands of credentials along the way
securitylabs.datadoghq.com/articles/mut...
0
22
13
IPv6 was a mistake.
10 months ago
0
0
0
Pro tip: put your phishing implant in the "unsubscribe here" link and spam legitimate looking marketing email to IT staff. You'll bypass the SOC analysis and annoy enough admins into getting them to click the link.
10 months ago
0
3
0
Dark Wire by
@josephcox.bsky.social
was absolutely my favorite read this year. Exceptional journalism is hard to come by these days.
add a skeleton here at some point
10 months ago
0
2
0
My computer is currently broken and all I want to do is make a fusion gif of the eye of sauron and elf on a shelf snitching to Santa.
10 months ago
0
1
0
reposted by
HGB
Aaron Stewart-Ahn
10 months ago
Fuck I think we totally forgot that part in Dune Pt. 2 about not falling for charismatic violent folk heroes fueled by vengeance who look like Timothee Chalamet in a hoodie
277
19936
2171
This is shameful. I don't like to yuck people's yums but I draw the line here.
add a skeleton here at some point
10 months ago
0
3
0
reposted by
HGB
Technology Connections
10 months ago
A lot of you have never worked in the service industry and it really shows.
91
2665
194
Load more
feeds!
log in
