2022 PEN-210 and OSWP Exam Review
TL;DR: A clutch win with three minutes to spare. Simple mistakes eat dozens of minutes. PEN-210 is an up-to-date course
Continue reading
January 5th Meeting – The Church of Emacs by rbrins
Do you ever wonder about the editor wars and how emacs won? Join us as we take a fresh emacs
Continue reading
CVE, CWE, OWASP, and MITRE ATT&CK
CVE, CWE, ATT&CK, and OWASP, so many ways to describe risk, but how do they work? This talk will help
Continue reading
Incident NonResponse – November Meeting
Join us this November (11/03 at 6 PM) for the telling of tales from the field by community member rbrins.
Continue reading
Finding Unique Ways to Grow Skills
Most skills take time to hone and master. I’m not only referring to technical but also soft skills related to
Continue reading
Mobile and Personal Security
This Thursday 8/4 we have a special guest speaker from the Electronic Frontier Foundation (EFF), Alexis Hancock Director of Engineering,
Continue reading
Exfiltrating Information with Docker
Overview Mitre ATT&CK calls out Exfiltration Over Web Service: Exfiltration to Code Repository as technique https://attack.mitre.org/techniques/T1567/001/. While it specifically gives an
Continue reading
TryHackMe WriteUp | LazyAdmin
Description: Easy linux machine to practice your skills. Have some fun! There might be multiple ways to get user access.
Continue reading
TryHackMe WriteUp | Agent Sudo
Description: You found a secret server located under the deep sea. Your task is to hack inside the server and
Continue reading
Security Testing With Web Developer Tools
Burp Suite is the go-to tool to slice and dice web interactions. But sometimes loading up Burp (with all the
Continue reading