Security researcher Shellsharks has created Vulnerability.Garden, a catalog of named vulnerabilities. So far, we're 25 vulnerabilities away from 1K branded security bugs. Don't worry, @shellsharks.com... we'll get you there! vulnerability.garden

I put together a little post about my writing mannerisms. I'd once again like to blame @shellsharks.com for his provocation. He can't keep getting away with this! I should block his domain... vale.rocks/posts/writin... #Writing #WritingCommunity #WriterSky

Roses are Red Apples are fruit I should have sanitised this inputAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA └─# id uid=0(root) gid=0(root) groups=0(root) Now I am root!

Just redesigned my website's landing page as it was starting to feel a tad stale. I blame @shellsharks.com for prompting this with their recent redesign. vale.rocks

#Tapestry is the best Bluesky client just because it keeps track of where I last read in the timeline. Makes this platform kinda usable for me now at least to keep up with some of y'all usetapestry.com

"It wouldn’t be hard for a billionaire or a hostile government to take down one, two, three or maybe even 10 Bluesky relays. But it seems wholly impractical for a billionaire, or a team of billionaires to snuff out thousands of Fediverse instances." shellsharks.com/notes/2025/0... #FreeOurFeeds

It's been a while since I've published something I consider a "blog post" on my site. But thanks to @ApisNecros tossing over the "Blog Questions Challenge", this now exists --> https://shellsharks.com/get-to-know-my-blog Turns out, I've answer much of these questions in various places across […]

Okay, so Cory Doctorow published his take on the #freeourfeeds thingy, all about "billionaire-proofing" the Internet (or more accurately, billionaire-proofing social media), and I have some thoughts... https://pluralistic.net/2025/01/14/contesting-popularity/#everybody-samba His main argument […]

something i hope more people do on bsky is follow @ap.brid.gy . especially large/notable accounts . it bridges your account to Mastodon meaning people using Mastodon instances can see your posts and interact with you

Positive Technologies has developed a new attack that exploits the SD Express standard to gain access to a device's memory through its SD card reader The DaMAgeCard attack exploits the fact that the new SD Express standard can operate in both SDIO and NVMe swarm.ptsecurity.com/new-dog-old-...

This article has been shared by a lot of folks here, but to not a lot of response/discussion. techcrunch.com/2024/12/05/b... Is this a collective stick-fingers-in-ears-and-go-la-la-la moment for the bsky populace? *Stream of consciousness incoming*...

What's best? Bsky, Mastodon (Fediverse) or Threads? Trick question! Just having a personal blog/website is best. 😄

and like that, the #Fediverse has Starter Packs. Competition is good! The bsky team has some good ideas and with any luck, the popularity of good features here will continue to propel other complimentary networks forward. fedidevs.com/starter-packs/ My #IndieSec starter pack: fedidevs.com/s/MjQ/

Nice -- someone put together a Threat Modeling Field Guide. Great high-level overview for any org that's at this step in their maturity. https://shellsharks.com/threat-modeling

Man, Bluesky would actually be kinda usable for me if it would just remember my timeline position and let me scroll through everything I've missed. Letting me post more than 300 chars would also be nice but at least it has the ability to create an entire thread of posts and publish simultaneously

How does Bluesky's (domain-based) "verification" help the countless high-profile (and low-profile tbh) people who don't have domains/ well-known sites? How can Brad Pitt verify himself here? shellsharks.social/@shellsharks...

We need a feed for Threat Intel on Bluesky for us #Cybersecurity and #Infosec people. Something to share CVE's, attacks, and such rather than just the typical cybersecurity news.

Introduce yourself with four video games. - Jill of the Jungle - Super Mario World - Ultima Online - Halo Bonus: Diablo 3

Hey, if you write about #infosec / #cybersecurity let me know what your website/blog is so I can add it here shellsharks.com/infosec-blogs and also sub in my RSS reader!

Dragon Yawns the Universe Acrylic and marker on yupo paper ugh what year was this... it was a good art year. 2012

I have complex feelings about Bluesky, but I do feel like it's got the attention of the public in a way that mastodon didn't and is where many of my twitter friends will migrate to. Thankfully @shellsharks.com wrote a fantastic article about this: shellsharks.com/notes/2024/1... #socialmedia #bsky

I know it's not *cool* to talk about Mastodon here, and I'm not even here to tell you it's "better". What's better for anyone is completely subjective. I just wanted to say that it's pretty cool that I run my own, completely isolated, yet federated and connected instance for less than $20/mo.

Bluesky's got that Threads in 2023 energy. Now, less than 2 years later, you see how it's goin over there... still chuggin' but honeymoon period def over. Enjoy while it lasts!

It's a work in progress, but here's the "FediSec" starter pack featuring infosec/cyber folks from the Fediverse who are bridged here via Bridgy Fed. Note: Included in the pack is @ap.brid.gy which when followed will bridge your Bluesky account back to the Fediverse. Woo! go.bsky.app/EaxWS7g

Hey everyone, here's again my #introduction, for #bsky users via https://fed.brid.gy/ (hopefully that works). I'm a seasoned offensive #security researcher with 25+ years of experience. As a professional #hacker and polyglot programmer of weird machines, I study how things can go wrong. Some […]

Please educate newcomers on using bridgy fed to bridge their accounts to the #Fediverse this is an excellent tool for not needing an account on bsky and Mastodon while strengthening the open social web. fed.brid.gy #introduction #welcometobsky

Is there a Bluesky client that would allow me to write more than 300 characters? I'm pretty sure 300 chars isn't a limitation of the protocol so it must be possible. I feel like for posts, but especially for replies, you often need more room to say something actually thoughtful. Can't just be me!

Report - Trump nominates Jia Tan as director of CISA

I promise this isn't a hit piece about Bluesky. But for everyone who has recently left place A to come to place B(luesky), wherever place A may have been for you - I think you might have something to takeaway by reading. Let me know what you think, good or bad. It's how I learn 😁

Bluesky.com website doesn't even have a Bluesky social link. Ouch

Hey new folks, welcome to BlueSky! My name is Fran and I run the following #cybersecurity feed: bsky.app/profile/did:... I'll be working keep it spam free & good. If you're curious here are the keywords I'm looking for: gist.github.com/francisck/d8... Please provide feedback if you have any.

Serious question - How will the Bsky team defend against or respond to a Trump/Musk offensive against bsky itself? Bsky is turning into a top competitor of both of their platforms and is certain to harbor posts both of them would not like. Where are the servers/infra hosted? The team members?

You made it to Bluesky! Things are growing and active here which is great! But did you know you can connect with even MORE people through the "Bridgy Fed" bsky ↔️ Fediverse bridge? (fed.brid.gy) For example you can follow my Mastodon account from Bsky! @shellsharks.shellsharks.social.ap.brid.gy

Funny how no one ever cares about being in the top apps of the Google Play store 😂 Also...

Mastodon: "democracy dies in darkness" Bsky: "democracy dies in darkness" Threads: "lol, here's some Lord of the rings memes" X: (wouldn't know, don't wanna know)

All you *.bsky.social people... buy a domain!!! It's like... $6?

I'm #OpenToWok - could really go for Hibachi like any time.

They 100% need a monetization model. Don't think these *specific* features are going to get enough overall buy-in, but it's a start! The community-funded model (think Mastodon instances) has shown it can work. Premium features over selling user data / ads is a must must must!

Is there a best/definitive guide to hosting/standing up a #ATproto #PDS someone can recommend me?

@howelloneill.bsky.social hey! Wouldn't mind being added to the cyber starter pack! Appreciate it!

I can't have bluesky becoming good or relevant for me. I spend too much time on social media (Mastodon/Threads) as it is 🤦‍♂️

Tried my hand at making my first starter pack as I couldn’t find some for #IT, #Infosec, and/or #cybersecurity and I saw @shellsharks.com asking for one too. Feel free to give feedback go.bsky.app/QYMa3yN

Now is there an #infosec / #cybersecurity starter pack?

Almost two years ago, I published this relatively exhaustive "threat modeling field guide” which seeks to describe and illuminate the multitude of threat modeling methodologies/frameworks that exist (e.g. PASTA, OCTAVE, Trike, LINDDUN, VAST, TARA, IDDIL/ATC, hTMM, QTMM, Microsoft TM, NIS SP […]

Mastodon has been bridged to bsky, follow me on bsky here! @shellsharks.shellsharks.social.ap.brid.gy 🐘🌉🦋

1/For my fellow tech nerds, you need to check shellsharks.com! Aside from being awesome enough to include a link to my blog, it's got TONS of great content. Honestly, it's inspirational, in that it's what I'd like my blog to become. In addition, @shellsharks.com is fully on board with the Fediverse.

Link roundup related to xz/liblzma compromise (CVE-2024-3094) shellsharks.com/xz-compromis...

Is there a way to make Bsky timeline not snap to latest post in the home timeline? I'd like to be able to read through all "unread". Maybe a third-party client has this or it's a setting in the native client I've missed??