apiratemoo

@apiratemoo@infosec.exchange

Red team.
Breaker of things: Harvester of nerd tears
\x6d\x6f\x6f\x62\x69\x74\x63\x68

Space Cows CTF team captain

(She/her/they/them)
#hacking #redteam

This profile is from a federated server and may be incomplete. Browse more on the original instance.

apiratemoo, to infosec

My feed right now. Just saying:

apiratemoo,

@simonzerafa Yea, it's about their commercials.

apiratemoo, to random

Damn yo. No one ever listens to fuckall that I say.

Anyone who does knows me well-enough, also knows I whined for yearrrrs about this and how someone was going to use IoT devices to make a botnet en masse.

https://www.tomshardware.com/networking/three-million-malware-infected-smart-toothbrushes-used-in-swiss-ddos-attacks-botnet-causes-millions-of-euros-in-damages

apiratemoo,

@simonzerafa

The firm’s site collapsed under the strain of the attack, reportedly resulting in the loss of millions of Euros of business.

apiratemoo, to hacking

ESPecially good write-up on re esp32 related items with a nice introduction to the ESP32 mcu.

There are some interesting tools used here, so while this might be a bit long, it's definitely worth checking out!

Really sad to see this barely got any likes on Twitter.

How sad.

https://jmswrnr.com/blog/hacking-a-smart-home-device

#hacking #hardwarehacking #reversengineering #writeups #InfosecWriteups

GossiTheDog, to random
@GossiTheDog@cyberplace.social avatar

deleted_by_author

    •
    apiratemoo,

    @GossiTheDog

    There are a few ways:

    1. Typical nc/telnet/ssh attempt to banner grab
    2. Using CDP to your advantage with Wireshark
    3. SNMP: Try to onesixtyone it and see if any of the comm. strs are public/reveal anything.
    apiratemoo, to hacking

    I found this article refreshing for its honesty.

    On a side note, have you noticed how many “training” sites there are now? It’s almost like people are making more money teaching hacking than actually doing it."

    I agree, but it's worth noting the education market has been saturated with non-material, often designed as a ploy to encourage spending for a very long time now.

    A cogwheel grift to get people spending.

    Training resources (and the industry) suffer from the following issues:

    • Redundancy
    • Unnecessary word bloat
    • Staleness to dynamic alternatives
    • Outdated and unrealistic

    https://assume-breach.medium.com/im-not-a-pentester-and-you-might-not-want-to-be-one-either-8b5701808dfc


    apiratemoo, (edited )

    @simonzerafa

    To an extent, yes.

    However, it would be wrong to point this out as the only issue within the security realm, as it seems true across the board for IT (it's just especially noticeable in infosec).

    apiratemoo, to random

    Hey all!

    I am currently in the process of dipping my toes to see what's out there.

    I'm looking for roles as an offensive security consultant (although I'm not opposed to any kind of support role if the pay is decent enough),
    where I can grow as a penetration tester and be part of an awesome team where I'm constantly learning, engaging and interacting with my peers.

    Let me know if you have any suggestions.

    apiratemoo,

    Right, so you probably want some information about me!

    I've conducted assessments for a wide range of clients, and am proficient in a wide range of tools.

    I actually enjoy writing reports (go figure!), have trained and mentored interns, and have designed training materials and presentations.

    I have a degree as a network specialist and have done a little volunteer work at The Diana Initiative, Hacking Diversified, Defcon and HOPE!

    I represented my school in CCDC and am a HUGE CTF nerd.

    Space.Cows (my CTF team) has done some amazing things competitively (everything from winning 3rd place at The Diana Initiative CTF, 4th place in Wicked6: 2022, 2nd place at PancakesCon 2022, and 5th
    place at CactusCon).

    Basically, I know how to work with a team and I love learning and would greatly love to improve my skills!

    I also run a blog:
    https://www.piratemoo.com

    hacks4pancakes, to random

    I am wearing The Coat and you need to know

    apiratemoo,

    @hacks4pancakes I LOVE this picture of you.

    apiratemoo, to random

    Remember LAST YEAR when I won an Advent of Cyber prize from
    TryHackMe and was super excited?

    I still have yet to receive ANYTHING but a few random emails every 4mos. or so.

    That is kind of insane at this point.

    Link for reference before it gets pulled: https://tryhackme.com/r/resources/blog/advent-of-cyber-winners

    image/png

    apiratemoo, to random

    Only the finest in skincare for us professionals. :ablobcatbongogoogly:​:awesome:​

    apiratemoo, to random

    I'm almost certain that the voice actor who plays Harpocrates the historian in Final Fantasy XVI is actually the same voice actor who voiced Meachan, the historian in Final Fantasy X! How cool is that?

    Maechan the storyteller historian of ffx

  • All
  • Subscribed
  • Moderated
  • Favorites
  • JUstTest
  • mdbf
  • ngwrru68w68
  • modclub
  • magazineikmin
  • thenastyranch
  • rosin
  • khanakhh
  • InstantRegret
  • Youngstown
  • slotface
  • Durango
  • kavyap
  • DreamBathrooms
  • megavids
  • GTA5RPClips
  • tacticalgear
  • normalnudes
  • tester
  • osvaldo12
  • everett
  • cubers
  • ethstaker
  • anitta
  • Leos
  • provamag3
  • cisconetworking
  • lostlight
  • All magazines
    •