Відео

32:38 I believe you were talking about codespaces

taking my net+ here soon any good places to study? preferably free other than professor messer

There are still only 13 root servers. The reason for the limit has to do with the UDP packet size. Some roots do allow for an Anycast instance, but that instance is still the same IP as the primary root server that is being anycast’d. Speaking as a person that once ran L-Root for 3+ years

So, an interesting discussion all around concerning the biometrics topic. I found that it was missing some context in the discussion however, where no one mentioned that there are already other national protective laws under HIPAA; and there really needs to be correlation related to how that applies as well, and where the cross-over might exist. The CO state law takes inclusive steps to couple biometrics under state privacy laws (in the absence of an overall, cohesive national set), but I'm curious where the thought was that gaps existed in HIPAA that needed this type of additional regulation. Regardless of knowing about this law, this concept has led to some interesting group discussions lately. Are hosted data centers now, or going to be, responsible for providing HIPAA related audit data, in addition to SOC 1/2, as part of the reporting to their clients? Biometrics are a huge part of their security controls and they have lots of client data.

Man is sending full on helldivers 2 extraction codes 😂

Shecky bringing the real talk at 23:00 great points sir!

AONE ❤

That is not at all how it’s being used. Yes, it is Drone as First Response. But just as they would when physically on scene they can assess. And engage if the presented situation called for engagement and or simply be able to surveil and on going situation and provide live updates for those headed and to arriving on scene.

fkn banged my head trying to setup the proxy inside the emulator's settings. It worked super easy via adb. TY so much!

Is it going to help them get the right address ? Before they kick in the wrong door and shoot an innocent unarmed citizen ?

Why don't hackers do the right thing and delete peoples loans and mortgages

The DNS and BIND book should be required reading for anyone working in IT. The amount of people that only have surface level understanding of DNS is astounding.

Windows is malware, stop using it.

ACAB

Already in use, mostly for narcotic surveillance and prostitution stings as the test templates

Not gonna lie I totally agree with his statement 😂

can someone post the article by Daniel Meissler referenced at 3:20

Its such a evasive move im sure the a community will find a way to disable it

finalyyyyy thanks alot

This is gold!

I used my Flipper to find all the secret codes for my TV. It's been helpful because my TV needs an occasional hard reboot which I can do using an undocumented ir command. It was also awesome when I was pranking my nieces and nephews.

Thank you for this Serena and BHIS team. :D

42

Ethics, company have none. It’s all about money. Disclose after 90’days of just like Google does period. Then sue the vendor aka MS for dragging their feet.

Love these talks!! Thx for taking your time and doing them.

Sir tornet is safe? pip install tornet?

UA-cam why have you been hiding this channel from me? Great video!😻

Hii Serena, Do you know any book that goes deep into this or atleast networkig?

Thinking about AWS certs...needed to brush my DNS knowledge. Keep it up.

Nice one. Is Bryan Strand a brother to John Strand?

To me the biggest problem trying to use direct IP communications are the shared IP addresses. My setup is fairly typical so it's a good example. I have multiple web sites on my primary server and multiple servers behind my IP addresses. Without DNS information in the header the traffic can't be routed properly. In addition I use Cloudflare just like nearly 20% of the web. Direct incoming traffic would just hit my firewall and get "Unable to connect". Cloudflare also uses shared IP addresses unless you want to give them a kidney each and every month. If you try an IP you get from querying my DNS records you get "Error 1003" "Direct IP access not allowed". All that is before we even talk about residential configurations that are often CGNAT. I think DNS is here to stay for a while.

the secret is to screenshot the solution before playing. I wish someone had explained this before on the RSAC speech. Because I had no idea how to share the deck on zoom with other people. dang it people. it's always the simple things.

I like this one more, this webbrowser is up to date. unlike the RSAC one.

Great summary, i'm learning so much about cyber sec!

Thanksss so much!! Helped me a lot cause default way of configuring proxy inside android wasan´t working.

Is Recall any worse than an RCE though? It has an “ultimate use after free vuln” vibe, but from a security perspective, is it really worse? Computers are vulnerable, we might as well get to use the AI.

I think Just a Clever Simulation is exactly right at 28:45ish about Windows Recall. People won't really care until they are personally confronted with something they don't like. It could be a hacker blackmailing them, a family member or friend using your computer and seeing something you didn't want them to see, or SUPER pushy advertising calling out your exact behavior along the lines of "You looked at that potato twice today. Are you sure you don't want to buy it?"

I took the Cyber Deception course few years ago and can highly recommend it! I did pay what I could at the time, and then got a few additional courses from Antisyphon that were excellent!

Love the puppy dog. P.S. People have been editing their genes at home for at least a couple years.

That was funny!!

If you know you know.

Who even uses qradar?

As an IT student/new professional, I enjoy watching these shows because your breakdowns of cybersecurity news topics end up being very friendly to those of us that may not have a deep level of knowledge on the topics. I learn something new every episode. Just a personal preference; If there was a system you could use so there isn’t as much of people talking over each other like a hand raising button or a host and co-host call out people to speak that would be sweet.

What kind of camera and software are you using for your LPR?

Whoa, this looks skookum

1=1;--

Yes, hackers working stealing my notes !!!

This is an AMAZING checklist, great job underlining the examples!

ARP spoofing still being viable in 2024 isn't surprising at all. Can't say I've ever seen anyone implement DHCP snooping, IP source guard or DAI on production switches. Hell 90% of the time they're still using type 7 passwords in configs.

Yea no joke!!