Reggaeton Be Gone project by
RoniBandini
bandini.medium.com/reggaeton-be... Machine Learning to detect music style, rfcomn and l2ping bursts to neighbors Bluetooth speaker MAC address to DoS it. Needs more RF power and an effective DoS technique to be successful. Help him!
cve-2023-50387 DNSSEC DoS
www.theregister.com/2024/02/13/d...
kb.isc.org/docs/cve-202...
If you work (or play) in or near cryptography, it's very likely you owe a debt to the work of David Kahn, who passed away this week. wapo.st/47Weerz (gift link)
TIL: "All of NASA’s Mars missions that have parachuted down through the planet’s atmosphere have landed in the lowest areas possible" (< "sea" level)
TIL: Plausible Analytics
"Google Analytics is frustrating to use, difficult to understand, .."
True!
"...slow to load and privacy-invasive. That's why we built Plausible Analytics, a simple but powerful, lightweight (< 1 KB), open source and privacy-friendly alternative."
Bug bounty platforms deploy AI triage bots to tackle fake submissions by AI bots. Surprisingly, there is an intense interaction between these AI guardians and the AI submitters. Together, they uncover new bugs ... the end is near.
web dev art:
species-in-pieces.com
🤯 <div> CSS power
⚠️You can create non-Gmail Google accounts with a plus sign, using your organization's Google email. This is because emails sent to you+any@example.com get forwarded to you@example.com. This method prevents the organization from deleting or off-boarding these accounts!
My weather decision-making process:
1. Check model forecasts on Windy.
2. Cross-reference with live data: radar, satellites, weather stations.
3. Identify which model closely matches current conditions.
4. Assume this model predictions will be closer to reality for the period between model updates.
Twitter XSS+CSRF 🤦♂️ discovered by shoucccc. Full account takeover by clicking a link.
Protect your Children| Deautch Telekom | Stop sharing photos online www.youtube.com/watch?v=I3cY...
Things Every Hacker Once Knew: www.catb.org/esr/faqs/thi...
it is used to solve practical problems in south america
‘Energy independent’ Uruguay runs on 100% renewables for four straight months
🤯 First word discovered in unopened Herculaneum scroll.
Vesuvius Challenge ($700,000) “now definitely achievable"
scrollprize.org/firstletters
We've just made an OpenSSH release to fix a remotely exploitable RCE vulnerability in ssh-agent's PKCS#11 support (CVE-2023-38408). Details at https://openssh.com/releasenotes.html#9.3p2
Thanks to the Qualys Security Advisory Team for finding and reporting this bug.
Remote Code Execution in OpenSSH's forwarded ssh-agent
www.qualys.com/2023/07/19/cve-2023-3840...
ChatGPT: "As of July 3, 2023, we’ve disabled the Browse with Bing beta feature"
help.openai.com/en/articles/8077698-how-...
Embrace the uncertain
Bard team did not pay the $20 for gpt4 before deciding to releaae.
made soup
is passkey cloud backup optional?
blockchain!
I suddenly remembered a privilege escalation vulnerability that I don't remember reporting: it was a Linux kernel module that trusted a PID number for some limited time, so the exploit was forking until getting the same PID id and communicating with the module to escalate to root.
Bad name then :)Streaming AEAD looks googleable
🌐 High-Impact Security Discoveries HOWTO:
🔎 focus on emerging tech
🧠 understand threats
🔬 study vulnerabilities
💡 innovate attack methods
🤝 collaborate
🛡️ contribute to secure patching
📢 share research using impactful communication to foster awareness, engagement and inspire further research.
🤖Generative AI models can bridge human intentions and traditional, algorithmic APIs, giving rise to new adaptive and intuitive user interfaces. Not limited to text chat, imagine if AI-driven GUIs respond to real-time verbal feedback to adjust layout and content.
Over the years, many have anticipated that hardware wallets would evolve to resemble smartphones, with ample resources and screens to display comprehensive transaction information, allowing users to make informed decisions when approving or rejecting transactions.
I don't see this happening. Why?
Kirsten Neuschäfer (39) officially became the first woman to win a round the world race by the three great capes, including solo & fully crewed races, non-stop or with stops, & the first South African sailor to win a round-the-world event! ⛵️💪
Clients often underestimate findings about off-chain code and privileged account operations. They tend to dismiss suggestions like input validation for owner/gov-only functions, arguing it's unnecessary since they'll be cautious and want to avoid extra gas