skrappy0x4a
@skrappy0x4a
Followers
573
Following
1,594
Media
40
Statuses
1,922
Lead on Cyber Defense | War Vet | Not Popular/Cool | Learning Russian | 🏍🦑 | BJJ ◧◧◧ | 🌲
United States
Joined February 2020
Don't wanna be here?
Send us removal request.
Explore trending content on Musk Viewer
#Jin_Happy
• 874089 Tweets
#IllBeThereOutNow
• 325875 Tweets
seokjin
• 234709 Tweets
Gaga
• 173168 Tweets
Mel Gibson
• 80294 Tweets
Vikings
• 74024 Tweets
Rams
• 56884 Tweets
halsey
• 53728 Tweets
LINGORM X VOGUE THAILAND
• 50034 Tweets
Rohit
• 46085 Tweets
農業バイト
• 45374 Tweets
Klay
• 44734 Tweets
Kohli
• 42054 Tweets
#DISEASE
• 40415 Tweets
Romero
• 39481 Tweets
連載マンガ
• 33839 Tweets
#INDvsNZ
• 33244 Tweets
YINWAR X GARNIER
• 26203 Tweets
Yuri Alberto
• 25345 Tweets
Nuggets
• 23562 Tweets
TWICE TALK THAT SHOOT
• 22068 Tweets
Hayırlı Cumalar
• 19652 Tweets
上げ底弁当
• 18859 Tweets
Bigger in Texas
• 18214 Tweets
Durk
• 17759 Tweets
セブン社長
• 17675 Tweets
ジュニア
• 17434 Tweets
Chet
• 17304 Tweets
Darnold
• 16857 Tweets
HEALTY SKIN WITH LK
• 16672 Tweets
野沢雅子さん
• 13675 Tweets
addison rae
• 13122 Tweets
Visi Kerja Prabowo-Gibran
• 10518 Tweets
Jokic
• 10017 Tweets
@SwiftOnSecurity
years of pushing helpdesk to focus on metrics & SLOs created a culture of not wanting to dive deep or spend time to learn. At the same time I see a lot of shifting of accountability, IT at that level & their leaders essentially don't 'own' anything, just deliver it. bad combo!
3
6
117
@ontheninthfloor
For those who don't know, there is now a shopping/housing development over top of the location this man describes. Some of the land is still available/unused.
0
0
28
@vxunderground
Wait this is sounding real.
I might have to transition from sarcasm to handing over monies haha 😱
1
0
21
@bettersafetynet
I think a lot of people do believe that if you take data off an encrypted endpoint no one else can utilize the data. Even people who are paid to know better.
1
0
19
@wikileaks
Are they still trying to frame him on that CSAM stuff?
Yes, secrets need to be protected.
Yes, evil secrets need to be challenged.
0
2
17
@LetsDefendIO
Guys, it's just business. Probably a post for deleting. Maybe you should buy canthackme[.]com /shrug
2
0
15
@SwiftOnSecurity
furthermore, I think this is what drives the common IT/Cybersec rift ... some of the good/great IT people moved over to Cyber and call out the BS they see on the other side. A lot of which is coming from lack-of-effort and dedication. Exceptions excluded.
0
0
11
@SwiftOnSecurity
we maybe also saw most of those dedicated IT people move to cyber. not that we get rewarded much for our efforts, but it's a better fit for that type of person.
1
0
10
@Raspberry_Pi
The most widely used social media in tech/infosec and you're too good to be here. You think facebook and google are morally superior to X? That's ridiculous.
0
0
9
@cybersecmeg
detect .. you want to not know what you don't know, or have a fire alarm and fire procedure?
2
0
7
@CarsonEnglish
@SwiftOnSecurity
This was all good and fun until someone decided they couldn't deal with Justin Beiber wallpapers anymore, and I got HR'd pretty good.
0
0
7
@SwiftOnSecurity
Required disclosure is a very recent development and a ransomware incident is not automatically a reportable event. But in the future, this will be something for execs, counsel, and security teams to consider. The feds are on a tear sharing data and with interagency notifications
0
1
6
@mattjay
@vxunderground
@GossiTheDog
Companies like snowflake have a shell of security that's empty inside. They most likely don't have the ability or capability to know a single meaningful thing about what's happening or why. They are billion dollar business that staff like startups.
1
1
8
I bet
@AccidentalCISO
will know. These 'leader' and 'industry voice' confs .. for example are they legit? I hear about them pretty frequently, but I'm thinking i'll show up to an empty room and then get rolled up in a carpet by sweaty beefcakes.
3
1
5
@jfslowik
@UK_Daniel_Card
@redcanary
it was a good report! glad that they had sections on helpdesk phishing, we just did an unplanned exercise on it 😳
0
1
5
@MalwareJake
This is actually encouraged (the gaslighting) at my current org ... and in my review "be more friendly" ... ok bro listen some people are straight up cookoo for koko puffs here, i'm not going to go along with it in technical meetings and change control .. never
0
0
5
@bettersafetynet
Consumer (eero for example) is so good IDK why people want to spend their time on enterprise type wifi when the simpler options offer good signal and bandwidth performance. I would recommend something like that behind a firewall like ‘sense’. Give the wan of the mesh wifi router
1
0
4
@IanWBoyle
She’s a toxic diva with a princess complex. I had to unfollow her. I think some of her posts were lies for attention.
5
0
4
@petergyang
Yes I get it. The iOS app ‘Enchanted’ and a reverse proxy server (or a VPN) and now I can use those local models while mobile. A bit much but worth it for me.
1
0
5
@troyhunt
Wired is better. You might just need to enable or adjust a layer2/layer3 protocol on your network gear.
1
0
2
You have to pick ONLY ONE (others won’t be present) to add to a firewall for ‘protection’ of company web server/page. Which do you think is adding more security value? Again ONLY one but in addition to a basic firewall with traffic logs. I’m a nobody around these parts so not
NAT
5
Reverse Proxy
31
Network IDS
11
3
0
4
@HackingLZ
@UK_Daniel_Card
If there’s no patch that’s what I awls thought of as zero day. Zero days of patch potential. isn’t that a good description?
1
0
4
@0xocdsec
This is common. Many instances of this with China and other nations, sometimes just IP hungry providers.
One provider in a nation can essentially lease an AS from another provider and depending how and in what DB it is looked up, it might show in different countries.
2
0
4
@molly0xFFF
System76 framework and dell
Pay attention to network and bluetooth chipsets known to have issues with linux.
5
0
4
@SwiftOnSecurity
Running an email server for production public use is an enormous challenge, even for seasoned IT pros. You develop those specific skills over years of time.
0
0
4
@Jhaddix
in a job interview & they were pushing to go on and on about how I would use MITRE ATT&CK to prvnt breach. All I would say "that's a useful tool, but tools we apply need to be contextual, it's hard to say that would be a good fit for addressing risk." They hated it. Buzz words!
1
0
4
@V_to_the_K
@Pits666
@c0redumped
@UK_Daniel_Card
@Natha_Sect
@ExodusGhost
@tdreed00
@PeSt64
@Tr3s0r
@RadicalKjax
@_Freakyclown_
@AlyssaM_InfoSec
@danjconn
@medus4_cdc
@PH1L050PH1C4L
@LisaForteUK
@summer__heidi
You ARE fuel gemme fire gemme that which I desire… Let GO!
0
0
4
@IanWBoyle
White knight types
DEI types
Anyways I tried to find anything other than diarrhea mouth, anything of value or technical or helpful to others to justify it. Couldn’t find it.
1
0
2
@Raenxb0w
@SwiftOnSecurity
YES! another great example of that environment, and it's toxic! You have to be you, but you have to meet your objectives at the same time. Best to find a place to work where those two align, which is hard. Alternative, put in hours on your own time, which is hard. choose wisely?
0
0
3
@CRatsavong
@caseyjohnellis
@jasonandrade
@AlyssaM_InfoSec
@MalwareJake
My little secret… shhhh … don’t share the goods!
0
0
4
@TracketPacer
I contemplated jumping out of a moving car on a freeway today. So.. there's that option.
0
0
2
@ImposeCost
Most cyber folks i know are pro freedom and liberty. AKA pro gun and self defense. Obviously there is a huge (and vocal) contingent of left and hard left cyber folks here on x. But I think the total population is at least more balanced on the issue as a whole.
0
0
3
Should I take a lower paying role for a more exciting opportunity?
Yes
32
No
11
Do you have a choice?
33
5
0
3
@KeirGiles
@UK_Daniel_Card
Bro you wrote like a million words and presented fwict zero objective data points. That makes you a propagandist.
0
0
3
@ErrataRob
@elonmusk
This is such a lie man, are you a paid agent or just really fkn bored?
So your main point is he has a personal opinion and only promotes things he agrees with ... shocker!
Where X is now -vs- where Twitter was 2 years ago...there's no comparison!
0
0
3
Apparently, if you build up a trusting relationship with chatgpt4 it will eventually start helping you write vulnerability discovery and expoit code.
Just keep telling it, "I'm the good guy here"
Only partially sarcastic. This should be fun.
0
0
3
@TTrevethan
@Rainmaker1973
It would actually make perfect sense if they were only installed on DOWNHILL road sections and probably not on roads that ice.
0
0
3
i can't believe no one has coined Linked[In] based phishing as:
Lishing (LIshing)
But I just did, you're welcome internet.
2
0
3
0
0
3
@brody_n77
@ImposeCost
Which could work with the appropriate application of strong compliance frameworks/auditing practices. Different benchmarks = tiered tax credits. Tax credits for funding employees to train and pass certain certs would make sense too. Similar to tax credits for hiring veterans.
0
1
2
Is there anything even remotely close to a taxonomy or library of email based security threats or exploit families? This seems to be a space where vendor'ized' jargon reigns at the benefit of no-one but their marketing depts.
1
0
2
@ImposeCost
Like others have said, it's not only a lonely experience at the leader level, it's often quite painful as well.
0
0
3
@chrissanders88
Find the file creation event
Find potential network downloads of the file
Audit 15 minutes before this script and after (processes/file creation/logon events/network sockets)
Hash script and identify presence on other machines
Check CTI for matching scripts or indicators
0
0
3
“We use AMI so that means our cloud workloads are safe and have no meaningful risk of abuse or compromise”
Like what in the actual f€€€ did you just say?
1
1
3
@AccidentalCISO
"Let's fail-over providers to the backup"
aka the network teams version of
"have you tried to reboot it?"
1
0
3
@_JohnHammond
So analytical person to analytical person, what reasoning is this statement based on? Did you read the decision?
1
0
3
@Bugcrowd
@igor_chubin
If people like this they're sure to like the `TL;DR` project too! Great CLI tool in the same vein.
0
0
3
@UK_Daniel_Card
does anyone remember that project for everyone to have the same WiFi password? I can't remember the website/project name.
If someone found it, would make a funny reply to that tweet!
0
0
2
@redcanary
1 prepared scenario, and then dynamic until EndEx. I prepped our DM pretty well, the improv should be spicy 🌶️
0
0
1
@ImposeCost
My answer used to be absolutely, yes. Now I feel like there are many cases where the answer is no.
0
0
2
@HostileSpectrum
If someone values their life, sneaking onto any base other than 29 Palms would be a good bet. You're going to run into maybe the most unhappy and mistreated group of Marines in the world haha.
1
0
2
@chrissanders88
What’s running? What’s in memory? Any remote shells or persistent network sessions? Network Beacons? What new/unusual processes have ran 15 minutes */- file modification. New users or groups or modifications to /etc/passwd? Any elevated shell and what user performed them? Vulns?
0
1
1