I spent a lot of time thinking about where I want to take
@nzyme_defense
and what kind of company to build. I wrote it up here and shot a whole video with it:
We've mitigated the Log4J vulnerability for our users and customers. New releases now available!
v3.3.15, v4.0.14, v4.1.9 and v4.2.3 ready for download.
Super proud of the whole team that tackled this issue today and immediately delivered the fixes.
@RowanWuff
@shortxstack
mine was gone once and I couldn’t find it. turns out it ate a sock under the couch but I was seriously concerned that it escaped through the open door and rode into the sunset on the street
After more than 10 years, my last day at Graylog will be Jan 1st. Happy to see how much this company has grown and how many great people work here today.
I'm starting something new!👀Excited about things to come.
lmao if you try to get away with a Pwnagotchi or Pineapple ever again
(phone connects to Pi, Pi connects to nzyme leader via LoRa for wide-area tracking of a target without relying on WiFi in an environment under attack)
Woken up at 5am by a woman screaming for help in hotel room next door, called security and they just BUSTED that door in, getting her out of there?? at least I’m awake now
Update: I'm now using the Mozilla Public Suffix List to identify parts of the domain that third parties can register their own domains below. It's called a "eTLD" or "effective top-level domain".
For example, "us-east-1.amazonaws .com" is a eTLD because there are individual
What would you call the "azure-api .net" part of "xpay-apim-prod-centralus-01.regional.azure-api .net"? (just an example. nothing special about that host)
I'm thinking "Domain Base"? "Root Domain" is confusing.
To keep my programming skills from completely disappearing, I've spent a bunch of free time over the last years to build a new version of nzyme.
It's a pretty complete open WiFi defense system and available now! Have fun!
There are “tech” companies today where almost the entire c-level staff has never clicked once in their own product.
They will say they are “not technical” or they “don’t need to”. Run. They are slowly driving the business into the ground, with one strategic mistake after
Browser extension compromised. Not sure who of your users has it running?
Manage osquery through the new Graylog Sidecar, configure queries centrally, roll them out automatically and restart osqueryd on all endpoints.
Then use Graylog to find affected endpoints.
Yepp. <3
Windows people! What's the way to use SSH in 2021? Powershell and that ominous Linux subsystem?
I'm really allergic to Putty and I want a good terminal emulator.
In Graylog v3.0, you'll be able to manage and configure any kind of (whitelisted) remote process without ever logging in to the remote host. Notice "auditd" in the GIF? Next: sysmon. It's up to your setup! All GUI.
So proud of this team. v3.0 is going to be such a leap forward!
I don't want to jinx it, but I have been peeling apart Bluetooth Low Energy frames all afternoon and I think I can reliably identify devices in Apple Find My (like AirTags) with the new
@nzyme_defense
Bluetooth subsystem
update from the weekly phone call with my parents: my dad's cardiologist is no longer allowed to practice after spreading COVID misinformation and also they made schnitzel today and it has been raining all weekend
@SwiftOnSecurity
a German satirist with a verified account renamed himself to a reputable German TV station a few weeks ago and pushed a false story that made it into all the news outlets
Over Christmas 2019, my father looked at me and out of nowhere said "maybe your generation is the first where not everything always keeps getting better" and I think about that once a month
we quickly emergency-coordinated tonight and guaranteed that company pays for hotel rooms for employees in dire straits or that they can camp out in office (which has water, heat and power) if hotel rooms are unavailable ✌️
REMEMBER when I got drunk two weeks ago with my friend and I promised her that I’ll go to her pole dancing class?
WELL. we keep promises here and that’s us
here we go. terrible quality because I don’t have sparr electricity to download video from the drone
you can clearly see how whole parts of the city are out of power, including mine
What's a simple internal ticketing solution that doesn't suck? JIRA is just too complex. I want a task, a type of the task, a due date and who owns it. People who request things have a simple form to create a ticket.
I don't want Trello. I want it hosted.
a bunch of kids flipped their car into the fiber line, ATT is fixing it for two days now and Alexa has no internet so I have to turn the lights off with a manual switch like a goddamn caveman
I've decided what I'll do next.
I'll be working on open source nzyme v2.0 full-time, extending it with Ethernet support and porting all the WiFi stuff to an entirely new architecture. Have an office already and a huge list of tasks that I'll make public soon.
Exciting times!