7
parallax_crow 7 points ago +7 / -0

I think this is the right mentality to have honestly. This was a relatively rare thing until the last decade or so of it being heavily pushed.

People who were already outcasts and/or struggling with mental health issues suddenly were greeted with some sort of identity they could adopt and politics would force everyone around them to accept and like them.

Except the medical complications and social awkwardness are added on, and the underlying problems and pain are never resolved. They realize the media and cancel culture can't bodyguard them 24/7, their social media posts and reactions aren't tangible living, and even if people aren't outright attacking them, they may be avoided entirely. The hormones make things feel even worse, and we end up losing lives. I've already seen it a couple of times in person, one ending in suicide, and another likely.

I just can't wrap my head around how any of this can possibly align with "first, do no harm" but here we are.

4
parallax_crow [M] 4 points ago +4 / -0

What device and browser are you using? I'll pass the information up to the dev team.

4
parallax_crow [M] 4 points ago +5 / -1

I'll help arrange a couple of days for you to study.

2
parallax_crow 2 points ago +2 / -0

What was directly before the half time show?

5
parallax_crow 5 points ago +5 / -0

ChatGPT is planting the seeds during an economic downturn for the next wave of techbro startups to buy access to their API.

As soon as the economy starts to look upward everyone and their dog is going to be pitching new concepts using it, and there will be a bubble.

There's a coming gold rush and OpenAI (ChatGPT's creator) is marketing shovels.

4
parallax_crow [M] 4 points ago +4 / -0

Leaving this up because this appears to be unrelated to the 'part 2' video.

2
parallax_crow 2 points ago +2 / -0

I think this is an important callout.

The control list is a good high-level overview of the industry that you can then specialize into what interests you.

u/solarsavior may be focused on defense-in-depth and compliance

red-teamer may be focused on abusing proxies and selenium

SOC analyst is interested in basic triage forensics

a threat hunter would be interested in TTPs from recent campaigns

Its good to cross-discipline, but nobody does everything.

3
parallax_crow 3 points ago +3 / -0

Learn by doing. Build a home lab and start playing both sides of the fence, red team and blue team. That will help you learn what you need to get around, and what you need to watch for.

Make reading intel reports part of your daily digest (i.e. alienvault feed, following strategic twitter accounts, etc) understanding TTPs will help you later with identifying objectives. Here's a good breakdown of a recent campaign: https://darktrace.com/blog/exploring-a-crypto-mining-campaign-which-used-the-log-4j-vulnerability

John Hammond has some good videos, example: https://www.youtube.com/watch?v=3Q9-X_NRlJc

Check out Black Hills Infosec for cheap instructor lead courses.

5
parallax_crow [M] 5 points ago +6 / -1

This is quality.

2
parallax_crow 2 points ago +2 / -0

I deleted it. Got a lot of information about weather that was logically explaining the uptick and didnt want my post to stand as a distraction to the community.

6
parallax_crow [M] 6 points ago +6 / -0

I can help you stick to this new years resolution!

3
parallax_crow 3 points ago +3 / -0

I feel like the intel is stale. 6000 C2 hits per day, if truly malicious would indicate a major ordeal.

Go to your EDR and identify what processes are hitting these IOCs, if you find that its web browsers, its likely stale intel. C2 servers live short lives and return to the provider pools. Its not unusual to see a cobalt strike related IP be an ad-server or CDN a week later.

You can also use something like riskIQ to investigate some of them and see what hostnames are resolving, which will likely net you a lot of cdn names.

The drop in hits may indicate higher fidelity intel (cisco improved it) or it may indicate that you have users that routinely hit a site that is leveraging stale ips and they may have updated.

Really going to come down to what processes are reaching out.

2
parallax_crow 2 points ago +2 / -0

What IOC feed are you using?

3
parallax_crow 3 points ago +3 / -0

I agree.

Misuse of the discretion should cost a judge the election/appointment, and an argument against giving them such a wide range is certainly justified.

I'm just pointing out that this is materially different than 'legalization of pedophilia'

6
parallax_crow 6 points ago +6 / -0

The bill essentially codifies the discretion a judge has on requiring registration as a sex offender. It does not legalize the action itself.

I understand the outrage, and its a wide-berth, but its a bit sensationalized.

8
parallax_crow [M] 8 points ago +11 / -3

You do realize you can build your own community and see exactly what is available right?

view more: Next ›