HGB
@hgb.crowstrike.zip
๐ค 450
๐ฅ 884
๐ 138
DE&TH I like playing with malware, writing Sigma rules, and hoarding combo lists.
pinned post!
Check out this thing I did!
add a skeleton here at some point
about 1 year ago
0
11
3
reposted by
HGB
Taggart
3 months ago
I've just about had it with the vagaries of true/false positive/negative. Humbly presented: a more descriptive alternative.
loading . . .
The Tyranny of False Positives
It's time to move beyond true/false, positive/negative.
https://taggart-tech.com/false-positives/
0
3
6
reposted by
HGB
Joseph Cox
4 months ago
We just translated a wave of our ICE coverage into Spanish. No paywall, no email signup necessary. From leaks about Palantir's work with ICE to ICE's new facial recognition app, we think there is a massive public interest in this info. Read why and support us here:
www.404media.co/were-publish...
35
4059
1793
reposted by
HGB
Taggart
5 months ago
A reminder that you can get 50% off the new version of The Homelab Almanac with code OMGVERSIONTHREE until the end of June! I'm really happy with the new version, and I think you will be too.
taggartinstitute.org...
loading . . .
The Taggart Institute: Master Your Craft
The Taggart Institute exists to provide low-cost, high-quality technology training to everyone in a welcoming, supportive community.
https://taggartinstitute.org/p/the-homelab-almanac
0
5
2
Some days on a thrunt, the TAs are indistinguishable from the engineer who is highly motivated to break the rules. Using a scheduled task to run net.exe to add yourself to the administrators group on every login is commitment.
6 months ago
0
2
0
reposted by
HGB
Nathan McNulty
6 months ago
Uhh, apparently we have Entra SSO on Linux now? ๐คฏ
learn.microsoft.com/en-us/entra/...
2
22
4
reposted by
HGB
Taggart
6 months ago
I put together some thoughts on the mitigation advice regarding "ClickFix" attacks.
taggart-tech.com/cli...
loading . . .
ClickFix Fixes Ranked
The cool thing about ClickFix remediation is nobody walks away happy.
https://taggart-tech.com/clickfix/
2
5
6
I wish someone would reward my work with Ambrose and Gunnel.
8 months ago
0
0
0
I've watched 25 movies so far in 2025. Only 2000 to go.
9 months ago
0
0
0
reposted by
HGB
Matthew Garrett
9 months ago
Superintendent Chalmers: fentanyl labs? Principal Skinner: yes Chalmers: that the law enforcement folks were leaving alone? Skinner: yes Chalmers: localized entirely in Canada? Skinner: yes Chalmers: may I see them? Skinner: ...no
3
93
8
RMMs are RATs you pay for. Thanks for attending my TED talk.
9 months ago
0
1
0
reposted by
HGB
Dad Jokes
9 months ago
Little known fact: Before the crowbar was invented. Crows simply drank at home.
10
278
30
reposted by
HGB
8Bit
9 months ago
Regex is how I imagine eldritch horrors work. You look at it and it makes no sense and it's scary. As you stare, for a split second there is understanding. The universe expands before your eyes, reality unraveling. Then the madness sets in.
2
28
5
10 months ago
0
2
0
The NSA being asked to delete the word "privilege" is so funny. Goodbye every DFIR report.
10 months ago
0
4
0
I think it is thematically fitting that Donald Duck is a ska fan.
10 months ago
0
1
0
reposted by
HGB
eve6
10 months ago
I feel like Beyonce has a ska record in her
210
8168
871
reposted by
HGB
Matthew Garrett
10 months ago
Tabletop scenario: Elon Musk walks in and pulls the big "Disable 802.1x" lever like that scene in Ghostbusters, what controls do you still have
3
241
19
www.reuters.com/world/us/tru...
Wut
loading . . .
Trump pardons Silk Road founder Ulbricht for online drug scheme
U.S. President Donald Trump on Tuesday pardoned Silk Road founder Ross Ulbricht, who was serving a life sentence after being convicted of running an underground online marketplace that was used by thousands of drug dealers and others to conduct over $200 million worth of illicit sales using bitcoin.
https://www.reuters.com/world/us/trump-pardons-silk-road-founder-ulbricht-online-drug-scheme-2025-01-22/
10 months ago
0
3
0
Pick it up!
#vinyl
#ska
10 months ago
1
2
0
17 million in a single hand ๐
10 months ago
0
0
0
Psychic by Darkside might just be a perfect album.
10 months ago
0
0
0
reposted by
HGB
beetle moses
10 months ago
121
25781
3321
Even now, I really miss this city.
#vinyl
#punk
#losangeles
10 months ago
2
13
1
When my wife is out of town, I listen to weird German post punk at 7am.
#vinyl
#postpunk
10 months ago
1
6
0
reposted by
HGB
Taggart
11 months ago
I am so excited to finally show you the stable alpha of Venture, a cross-platform GUI for parsing Windows Event Logs!
github.com/mttaggart...
Venture was developed with support from my employer with the intent of creating an open source tool for all. Thank you, UCLA Health!
loading . . .
GitHub - mttaggart/venture: Venture: Cross-Platform GUI tool for parsing and analyzing Windows event logs
Venture: Cross-Platform GUI tool for parsing and analyzing Windows event logs - mttaggart/venture
https://github.com/mttaggart/venture
2
9
7
I went record shopping today and I am going back to my roots. Like most I really developed my taste in music as a teenager and I was very into this drone-y post punk sound.
#vinyl
#interpol
#postpunk
11 months ago
0
8
1
My daughter today was sitting at my desk and said she was working. When I asked what her job was she said "oh, I just do work". I feel this in my core.
11 months ago
0
1
0
reposted by
HGB
Taggart
11 months ago
Hey Bsky! I'm writing a piece on Python package security, and I'd really like to interview someone involved with the Debian Python team or someone who's a Fedora package sponsor to talk about the process. If you or anyone you know would be up for a 30-minute interview, drop me a DM! Thank you!
0
7
13
I've been doing chores all day. Unclogged some drains, tightened some handles, hung a mirror, and put up some smoke detectors. Also I got a pedicure today. Time to chill with some vinyl.
#punk
#vinyl
#fugazi
11 months ago
1
5
0
Well it turns out InTune Device Compliance policies don't matter at all.
labs.jumpsec.com/tokensmith-b...
Thankfully you can still detect intrusions with some older detection techniques like risky sign ins and looking for Check My Sign In (cmsi) events from the InTune company portal ID
loading . . .
TokenSmith - Bypassing Intune Compliant Device Conditional Access | JUMPSEC LABS
Conditional Access Policies (CAPs) are the core of Entra IDโs perimeter defense for the vast majority of Enterprise Microsoft 365 (M365) and Azure environments. The core ideas of conditional access ar...
https://labs.jumpsec.com/tokensmith-bypassing-intune-compliant-device-conditional-access/
11 months ago
1
0
0
#vinyl
#punk
11 months ago
0
1
0
My daughter is home sick so I'm listening to records and cleaning. So far on my playlist has been Mustard Plug, The Adolescents, and The Descendants.
11 months ago
0
1
0
How many tobacco related crimes does the ATF actually pursue?
11 months ago
0
1
0
Chili day!
11 months ago
1
1
0
I just threatened my wife to throw away all of our mismatched Tupperware and replace them with the vastly superior deli cups and I might just do it...
11 months ago
0
0
0
reposted by
HGB
Anthony Iannaccio
11 months ago
Mister Rogers never misses
198
25064
8685
#punk
#australia
11 months ago
1
3
0
reposted by
HGB
Horkos
11 months ago
This is the game. Be mad if you want, but if the IC pulled this off in China, youโd think it was based. This is SolarWinds and OPM and a dozen other examples: espionage at scale facilitated by poor code in products and lack of security hygiene. Be mad if you want, but donโt pretend this is unfair.
add a skeleton here at some point
4
54
19
Dune taking place 10,000 years after the butlerian jihad was a mistake.
11 months ago
0
0
0
I bought myself some more gator sauce as an early Christmas present and I am very pleased.
11 months ago
0
0
0
reposted by
HGB
Christophe Tafani-Dereeper
12 months ago
New research: We've been monitoring a threat actor publishing dozens of trojanized GitHub repositories targeting threat actors, leaking hundreds of thousands of credentials along the way
securitylabs.datadoghq.com/articles/mut...
0
22
13
IPv6 was a mistake.
12 months ago
0
0
0
Pro tip: put your phishing implant in the "unsubscribe here" link and spam legitimate looking marketing email to IT staff. You'll bypass the SOC analysis and annoy enough admins into getting them to click the link.
12 months ago
0
3
0
Dark Wire by
@josephcox.bsky.social
was absolutely my favorite read this year. Exceptional journalism is hard to come by these days.
add a skeleton here at some point
12 months ago
0
2
0
My computer is currently broken and all I want to do is make a fusion gif of the eye of sauron and elf on a shelf snitching to Santa.
12 months ago
0
1
0
reposted by
HGB
Aaron Stewart-Ahn
12 months ago
Fuck I think we totally forgot that part in Dune Pt. 2 about not falling for charismatic violent folk heroes fueled by vengeance who look like Timothee Chalamet in a hoodie
276
19888
2163
This is shameful. I don't like to yuck people's yums but I draw the line here.
add a skeleton here at some point
12 months ago
0
3
0
reposted by
HGB
Technology Connections
12 months ago
A lot of you have never worked in the service industry and it really shows.
91
2659
193
Load more
feeds!
log in
