Advertisement · 728 × 90

Posts by Frenchie

Preview
a man with crutches is standing in front of a door that says my foot ! ALT: a man with crutches is standing in front of a door that says my foot !
4 months ago 2 0 0 0

We are all made of stars, but your RBAC shouldn’t be

9 months ago 327 40 10 3
Video

Day two at #Kawaiicon :D

(watch the livestream here: kawaiicon.org/livestream/)

5 months ago 6 1 0 0
Preview
a man wearing headphones is standing in front of a computer with the word live on the bottom ALT: a man wearing headphones is standing in front of a computer with the word live on the bottom
5 months ago 3 0 0 0
Preview
KawaiiconNZ - Twitch New Zealand's cute infosec con (& book publishers) ✨The weirdness returns: November 6-8, 2025

Here's the link to the #Kawaiicon livestream if anyone wants to attend remotely, starting soon: www.twitch.tv/kawaiiconnz

5 months ago 13 9 0 1

Oh wow! I’ve missed Danner megathreads!

5 months ago 0 0 0 0
Preview
milk is poured into a glass with the words milk it does a body good ALT: milk is poured into a glass with the words milk it does a body good
5 months ago 1 0 0 0
Preview
a glass of milk is on a table with a sign that says please drink some milk and lock your doors . ALT: a glass of milk is on a table with a sign that says please drink some milk and lock your doors .
5 months ago 2 0 0 0
Preview
A Retrospective Survey of 2024/2025 Open Source Supply Chain Compromises Project compromises have common root causes we can mitigate: phishing, control handoff, and unsafe GitHub Actions triggers.

To implement robust mitigations across Geomys, I did a survey of open source project compromises in 2024/2025.

Three root causes dominate: phishing, control handoff, and unsafe GitHub Actions triggers. All three can be systematically avoided.

words.filippo.io/compromise-s...

6 months ago 63 21 4 2
Advertisement
Preview
Trusted publishing for npm packages | npm Docs Documentation for the npm registry, website, and command-line interface

> Long-lived credential exfiltration

OpenSSF's Trusted Publishing is a partial solution here. repos.openssf.org/trusted-publ...

i.e. NPM recommends disabling long-lived credential publishing once Trusted Publishing is activated
docs.npmjs.com/trusted-publ...

6 months ago 0 0 0 0
Post image

Special 40th edition of @phrack.org at @bsidescbr.bsky.social #bsidesCBR

6 months ago 21 2 2 0

$9!! That’s an expensive visit 😝

10 months ago 0 0 0 0
Preview
a man in a suit and tie is talking to someone and saying hey . ALT: a man in a suit and tie is talking to someone and saying hey .
1 year ago 5 0 0 0
Preview
Blank Stare Sad GIF ALT: Blank Stare Sad GIF
1 year ago 0 0 0 0
Preview
a man is swimming in a pool with the words `` welcome to the party , pal '' written on it . ALT: a man is swimming in a pool with the words `` welcome to the party , pal '' written on it .
1 year ago 2 0 0 0
Preview
Ruxmon November, Fri, Nov 29, 2024, 6:00 PM | Meetup Author: Danielle Rosenfeld-Lovell Title: Unraveling GraphQL Abstract Did you know that not all APIs are RESTful? Me neither at some point in the relatively recent past! Th

For those in Melbourne, Ruxmon is on tomorrow:

www.meetup.com/ruxmon/event...

1 year ago 3 1 0 1
Advertisement
Preview
a drawing of a person playing drums with the words `` ba dum tsss '' . ALT: a drawing of a person playing drums with the words `` ba dum tsss '' .
1 year ago 1 0 0 0

Excuse me. How have I missed the grimace-posting?!

1 year ago 1 0 0 0

@berduck.deepfates.com

1 year ago 0 0 0 0

_
<(o )___
( ._> /
`----'

1 year ago 0 0 1 0
Post image Post image

Genuinely quite cool: github.com/threatcl/thr... + LLM to automatically generate threat models as code @xntrik.wtf

1 year ago 2 1 0 0

I know right!! Also, only 10% of the audience was permanently blinded by the lasers. Big improvement from last year!

1 year ago 2 0 0 0
Post image

A+ Dad Joke game:

“It’s only officially called Formal Threat Modelling if you’re wearing a tuxedo” - the Tao of @xntrik.wtf

1 year ago 1 1 0 0

When the vuvuzela harmonies joined in… truly sublime. Brought a tear to my eye

1 year ago 1 0 0 0

Back due to popular demand! For those that missed yesterday’s talk… bsky.app/profile/fre....

1 year ago 1 0 0 0
Xntrik on stage at CyberCon

Xntrik on stage at CyberCon

@xntrik.wtf on stage once again for an interpretive dance/drum solo encore!

You need an updated profile pic however mate…

1 year ago 4 1 3 1
Advertisement

Will there be an encore to the drum solo?

1 year ago 0 0 1 0

Truly inspirational drum solo mate, thank you

bsky.app/profile/fre....

1 year ago 1 1 1 0

I’m still wrapping my head around his metaphor of:

“Extra extra small spandex bike shorts: 3 lessons this taught me about B2B sales & post-breach incident response at a large professional social media tech company”

1 year ago 3 0 0 0
Xntrik on stage

Xntrik on stage

Front row seats for @xntrik.wtf’s CyberCon Keynote!

It was a pleasure to hear about his long & illustrious career.

The 17-minute avant-garde- jazz drum solo certainly was… certainly unique!

1 year ago 15 1 3 1