infosex.exchange <3

You are probably looking for the infosec.exchange Mastodon instance

This host is mostly for my random stuff, and in little part acts like a well-intentioned placeholder for the typosquatted domain.

Discoverability and Archiving

Currently I'm using this host for saving the items from my own feeds to the Wayback Machine and provide in-links for search engines. I hate that I have to do this, but the non-sense ideology of Mastodon pretty much ruined the search feature for Fediverse as a whole, and this wasn't changed by the fact that they owned their mistake and implemented search eventually.

Yes, I (or anyone else) could do similar things with other peoples published feeds, regardless of the tantrum. No, you can't defederate this, because the process doesn't rely on an instance.

Gluttony Section for Search Engines

In 10mins: Der Schlüssel zur COMpromittierung: Local Privilege Escalation Schwachstellen in AV/EDRs #38c3

https://events.ccc.de/congress/2024/hub/event/der-schlssel-zur-compromittierung-local-privilege-escalation-schwachstellen-in-av-edrs/

This looks remarkably similar to my previous research on #antivirus privescs:

https://blog.silentsignal.eu/2018/01/08/bare-knuckled-antivirus-breaking/
https://blog.silentsignal.eu/2019/06/24/self-defenseless-exploring-kasperskys-local-attack-surface/

Can't wait to see what these guys found!
this post | permalink
Circle Drone of Doom progress
this post | permalink
In 10 minutes: What the PHUZZ?! Finding 0-days in Web Applications with Coverage-guided #Fuzzing

https://streaming.media.ccc.de/38c3/zigzag/hls

#38c3
this post | permalink
@laund Yes, that. Also note that the assignment alone would fail at compile time because it's refutable, but in the `if` "context" it magically works. If you think about it this way, `if let` is a special, distinct expression that uses the syntax of two related, but different expressions (`if` and `let`, sry if I use "expression" wrong here). I find this confusing too.
this post | permalink
@laund Thanks for the explanation, that actually made things clearer!

However, my original question is exactly about the lack of syntactic sugar that would make the syntax arguably less elegant for the sake of making it more readable.

Your example with `for` is a great one because it shows that similar "backwards" constructs are already present in many languages (incl. Rust). On the other hand I'd argue that the `in` keyword makes a significant difference here for readability. Similarly reading assignments by themselves makes perfect sense until they are written in a different context.
this post | permalink
@laund thinking out loud:
- seeing an assignment in an `if` (in reality `if let`) condition is like having a scar in your mouth: it draws away my attention because it looks like wrong syntax
- having the subject of my "test" at the right-hand side of an expression feels backwards, esp. because if I destructure a value it "goes" from right (from the variable under test) to left (to the left-hand part of `let`), then jumps right to the code block where I can use it.

Based on this something like this would feel more natural to me (but I have no experience in language design, hence my question):

```
if x match Foo::Bar { ... };
if y_with_val match Foo::Baz(val) { /*...work with val...*/}
```
this post | permalink
Is there a reason why #Rust is so minimalist with keywords? For example the `if let` syntax is completely unreadable to me.

Also, things like `&_` make googling for errors practically impossible.
this post | permalink
In case if anyone is looking for them, #38c3 streams are here:

https://streaming.media.ccc.de/38c3
this post | permalink
@muminpappa Here's my old project with some (relatively) easy to get code and links to more mature resources: https://github.com/v-p-b/ghidra-vftable
this post | permalink
@da_667 I'm a fan of static site generators. Jekyll is an obvious option but Ruby is guaranteed Dependency Hell in the long run (I remember some fuckery even with Docker...). Hugo seems similar without the mess but I don't have experience with that one.
this post | permalink
Next Page