@adamsdesk I just updated the note 😄. Though it doesn't seem like Bowser makes an appearance in either of those games. I'm sure i'm still missing some though…
A quick-look at a not-so-talked-about type of security assessment, the "Secure Configuration Review”. Here I introduce a quick methodology for conducting this sort of review and provide examples of configs/settings you might typically evaluate during the assessment. Consider using this assessment type in the context of triaging OWASP Top 10 "Security Misconfiguration" or CWE-16-type flaws.
In 2019 I started my blog but knew nothing of the #IndieWeb or #SmallWeb. Thanks in large part to the awesome #Mastodon community I was introduced to these concepts and have been diving in ever since, adding IndieWeb capabilities to my site and exploring the Indie World in its entirety. To help introduce others to the IndieWeb as well as catalog useful/interesting things I encounter I decided to write a post about it.
If you’re interested in checking out a #fediverse-based alternative to Reddit, come check out infosec.pub! It hosts a number of communities including one I’ve stood up for #cybersecurity / #infosec!
@AssaultPepper@ed209 Yeah I loved Reddit back when and honestly would still get a lot of use out of it if I were to drag myself back there. I’m attempting a principled stand and trying to build something useful on the Fediverse. So as Ty said, I’m attempting to dedicate myself to this side and turn it into something more. Some communities (e.g. cybersecurity) are better poised to achieve this in shorter order. Smaller, more niche communities def have a harder grind to do it.
@shellsharks@AssaultPepper I 100% agree with the 'be the change'. But also that some of us still have to fall back to the Red Site to fill in the gaps. If it wasn't for r/Narcolepsy I would probably just delete my account.
I wrote this “guide” / thoughts on #Mastodon after re-joining the Fediverse in November 2022 (soon after some sort of Twitter-related crisis). This coincided with one of the larger migrations of #infosec folks to Mastodon.
I have kept this post semi-updated with a lot of interesting Mastodon/Fediverse-related resources as well as information for the infosec community here.
I’ve really loved writing for and building my blog over the years, making it uniquely mine. I highly encourage everyone to have an Internet “home” of their own and even better, to publish their own writing/thoughts there! A few years ago I wrote about why I blog and why you should too!
If any #infosec (or prospective #cybersecurity) folks out there are looking to get into Vulnerability Management (#VM), take a look at this #free “Bootcamp” I whipped up a few years ago. Cheers!
I’m a big #inboxzero fan, both as a means to generally declutter but also as a mechanism to fuel a productive to-do driven life. Check out the two-part series on Inbox Zero below if you’re interested!
For #infosec folks out there, what’s your routine/strategy for “staying current” in the field? I’ve written about my daily reading routine here for anyone interested.
@shellsharks To help address this, I created a curated RSS feed of high-quality sources at https://intel.taggartinstitute.org. You can either read it straight, or subscribe to the main feed, or any of the sub categories!
I've heard from a lot of folks it becomes their first stop during their routine.
@mttaggart I love what you’ve done with it. Even considered trying to do something similar since I’ve put so much effort in over the years compiling this list - https://shellsharks.com/infosec-blogs. Would definitely recommend this to others looking to pump up their regular infosec news-intake routine though.
The post currently features 3300+ unique infosec-related blogs/sites and has a downloadable, importable .opml file for use in your RSS aggregator of choice.
If you have a blog or site you want included in the list or know of one that is missing, feel free to let me know!