Bob Young<p>Does anyone else find a sort of ironic humor in the <a href="https://infosec.exchange/tags/Bsides" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Bsides</span></a> Seattle cybersecurity conference being hosted on the Microsoft campus?</p>
Recent searches
No recent searches
Search options
Only available when logged in.
social.coop is one of the many independent Mastodon servers you can use to participate in the fediverse.
A Fediverse instance for people interested in cooperative and collective projects. If you are interested in joining our community, please apply at https://join.social.coop/registration-form.html.
Administered by:
Server stats:
486active users
social.coop: About · Status · Profiles directory · Privacy policy
Mastodon: About · Get the app · Keyboard shortcuts · View source code · v4.3.4
#bsides
4 posts · 4 participants · 1 post today
Heather<p>On in an hour at <a href="https://mas.to/tags/BSidesSeattle" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>BSidesSeattle</span></a>, Track 1!</p><p>I’m talking about non-human identities—APIs, bots, devices—and why getting them right could be the key to finally getting human IAM right, too.</p><p>Also: standards work in this space is cooler than you think.</p><p>Hope you’ll join me for “Beyond Humans: The Event Horizon for IAM.”</p><p><a href="https://mas.to/tags/IAM" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>IAM</span></a> <a href="https://mas.to/tags/DigitalIdentity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>DigitalIdentity</span></a> <a href="https://mas.to/tags/BSides" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>BSides</span></a> <a href="https://mas.to/tags/Security" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Security</span></a> <a href="https://mas.to/tags/NonHumanIdentity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>NonHumanIdentity</span></a></p>
BSidesSATX<p>TGIF! Why not support your favorite non-profit and either submit to our CFP, or share that we’re looking for more sponsors? You can find all relevant information at www.bsidessatx.com</p><p>Thank you for the support - and we can’t wait to see all of you this year on June 21!</p><p><a href="https://infosec.exchange/tags/cfp" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>cfp</span></a> <a href="https://infosec.exchange/tags/bsides" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>bsides</span></a> <a href="https://infosec.exchange/tags/bsidessatx" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>bsidessatx</span></a> <a href="https://infosec.exchange/tags/sponsorship" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>sponsorship</span></a></p>
Claus Cramon Houmann<p>Hey folks. Do me a favor - if you have a network, tell it about BSides. Tell people how the BSides family of conferences works to make great educational content available for people at an affordable price.</p><p>Who knows, it might help someone get <a href="https://mastodon.social/tags/fedihired" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>fedihired</span></a> sometime. <a href="https://mastodon.social/tags/bsides" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>bsides</span></a>. <a href="https://mastodon.social/tags/BSidesLuxembourg2025" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>BSidesLuxembourg2025</span></a></p>
Jesse Harris<p>Great presentation on hooking .NET applications using Frida and Fermion. This is a must for anyone supporting MS environments. <a href="https://infosec.exchange/tags/BSidesSLC" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>BSidesSLC</span></a> <a href="https://infosec.exchange/tags/BSides" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>BSides</span></a></p>
Jesse Harris<p>If you use LLMs as a substitute for learning, you'll brain rot yourself out of being useful. <a href="https://infosec.exchange/tags/BSidesSLC" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>BSidesSLC</span></a> <a href="https://infosec.exchange/tags/BSides" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>BSides</span></a></p>
Jesse Harris<p>A crucial part of risk management is understanding both impact and likelihood. IoT devices get hyped up, but realistically they are nothing compared to what most social media and data brokers have on you. <a href="https://infosec.exchange/tags/BSidesSLC" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>BSidesSLC</span></a> <a href="https://infosec.exchange/tags/BSides" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>BSides</span></a></p>
Jesse Harris<p>General consensus that "AI" can be a major force of change, but in very specific and narrow use cases. It's a force amplifier, but not an employee replacement. <a href="https://infosec.exchange/tags/BSidesSLC" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>BSidesSLC</span></a> <a href="https://infosec.exchange/tags/BSides" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>BSides</span></a></p>
Jesse Harris<p>Top advice from CISO panel: make sure do you what you can to move the business forward. There are competing priorities that you may not be aware of. It's not necessarily that leadership doesn't care/understand, but that a lot of baby birds are peeping for coin. <a href="https://infosec.exchange/tags/BSidesSLC" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>BSidesSLC</span></a> <a href="https://infosec.exchange/tags/BSides" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>BSides</span></a></p>
Jesse Harris<p>I got confused for someone else because apparently all white guys with a beard and glasses look alike. 😅 <a href="https://infosec.exchange/tags/BSidesSLC" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>BSidesSLC</span></a> <a href="https://infosec.exchange/tags/BSides" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>BSides</span></a></p>
Jesse Harris<p>I think my big takeaway is that LLMs can help speed up your processes, but mostly when you already have a decent idea of what you're doing. It's not a magic answer box. <a href="https://infosec.exchange/tags/BSidesSLC" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>BSidesSLC</span></a> <a href="https://infosec.exchange/tags/BSides" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>BSides</span></a></p>
Jesse Harris<p>As you iterate, make sure you diff the output so you can review changes to scripts. This avoids nasty surprises. <a href="https://infosec.exchange/tags/BSidesSLC" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>BSidesSLC</span></a> <a href="https://infosec.exchange/tags/BSides" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>BSides</span></a></p>
Jesse Harris<p>Always a good idea to check the code/script suggestions for anything that seems off. <a href="https://infosec.exchange/tags/BSidesSLC" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>BSidesSLC</span></a> <a href="https://infosec.exchange/tags/BSides" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>BSides</span></a></p>
Jesse Harris<p>If you don't set boundaries with LLMs, they quickly go off the rails. This can help prevent hallucinations. <a href="https://infosec.exchange/tags/BSidesSLC" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>BSidesSLC</span></a> <a href="https://infosec.exchange/tags/BSides" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>BSides</span></a></p>
Jesse Harris<p>Each tool has ups and downs. There's no such thing as one LLM that does it all. This makes for some complicated toolchains. <a href="https://infosec.exchange/tags/BSidesSLC" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>BSidesSLC</span></a> <a href="https://infosec.exchange/tags/BSides" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>BSides</span></a></p>
Jesse Harris<p>Make things work, then add complexity. This matches the advice I got from David Cross to break things into small tasks. LLM/ML tools are really bad at complex tasks. <a href="https://infosec.exchange/tags/BSidesSLC" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>BSidesSLC</span></a> <a href="https://infosec.exchange/tags/BSides" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>BSides</span></a></p>
Jesse Harris<p>Probably surprising that I'd go to an AI talk, but I trust <span class="h-card" translate="no"><a href="https://infosec.exchange/@D4rkm4tter" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>D4rkm4tter</span></a></span> to give me the no BS version of how the tooling is useful. <a href="https://infosec.exchange/tags/BSidesSLC" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>BSidesSLC</span></a> <a href="https://infosec.exchange/tags/BSides" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>BSides</span></a></p>
Jesse Harris<p>It's wild that DLL hijacking is still a thing. This has been a problem for 30+ years. 🤯 <a href="https://infosec.exchange/tags/BSidesSLC" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>BSidesSLC</span></a> <a href="https://infosec.exchange/tags/BSides" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>BSides</span></a></p>
Jesse Harris<p>Weak crypto is common in desktop apps. Lots of "roll your own", known weak ciphers, hard-coded passphrases. You know, assuming it's not plaintext. <a href="https://infosec.exchange/tags/BSidesSLC" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>BSidesSLC</span></a> <a href="https://infosec.exchange/tags/BSides" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>BSides</span></a></p>
Jesse Harris<p>Local file storage and cache are a great way to expose data from a desktop application. You'd be shocked how often critical information is in an unencrypted SQLite database. <a href="https://infosec.exchange/tags/BSidesSLC" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>BSidesSLC</span></a> <a href="https://infosec.exchange/tags/BSides" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>BSides</span></a></p>
ExploreLive feeds
Mastodon is the best way to keep up with what's happening.
Follow anyone across the fediverse and see it all in chronological order. No algorithms, ads, or clickbait in sight.
LoginDrag & drop to upload