infosex.exchange <3

You are probably looking for the infosec.exchange Mastodon instance

This host is mostly for my random stuff, and in little part acts like a well-intentioned placeholder for the typosquatted domain.

Discoverability and Archiving

Currently I'm using this host for saving the items from my own feeds to the Wayback Machine and provide in-links for search engines. I hate that I have to do this, but the non-sense ideology of Mastodon pretty much ruined the search feature for Fediverse as a whole, and this wasn't changed by the fact that they owned their mistake and implemented search eventually.

Yes, I (or anyone else) could do similar things with other peoples published feeds, regardless of the tantrum. No, you can't defederate this, because the process doesn't rely on an instance.

Gluttony Section for Search Engines

A Trick, The Story Of CVE-2024-26230

https://whereisk0shl.top/post/a-trick-the-story-of-cve-2024-26230
this post | permalink
Chaining N-days to Compromise All: Part 3 — Windows Driver LPE: Medium to System

(CVE-2023–29360)

https://blog.theori.io/chaining-n-days-to-compromise-all-part-3-windows-driver-lpe-medium-to-system-12f7821d97bb
this post | permalink
[oss-security] CVE-2024-31497: Secret Key Recovery of NIST P-521 Private Keys Through Biased ECDSA Nonces in PuTTY Client

https://seclists.org/oss-sec/2024/q2/122
this post | permalink
[RSS] Analyzing the Code From The Terminator’s HUD

https://hackaday.com/2024/04/15/analyzing-the-code-from-the-terminators-hud/
this post | permalink
[RSS] The simple beauty of XOR floating point compression

https://blog.adafruit.com/2024/04/12/the-simple-beauty-of-xor-floating-point-compression/
this post | permalink
[RSS] Restoring a Fujitsu FM-8 computer #VintageComputing

https://blog.adafruit.com/2024/04/14/restoring-a-fujitsu-fm-8-computer-vintagecomputing/
this post | permalink
@mttaggart I can't decide if incorporating sneaky old-school `rm -rf /`s would make the situation better of worse :P
this post | permalink
Probably the most energetic band I've ever encountered, go see them if you can!

https://www.youtube.com/watch?v=RgzRZgCh_X8
this post | permalink
@nixCraft I'm on this picture and I don't like it.
this post | permalink
As I understand Beyond Security was acquired by Fortra (the same company that now sells Core Impact, Cobalt Strike and a bunch of other well-established products), and all the advisories published as part of BS's vulnerability disclosure program earlier are now available under the @SSDSecureDisclosure brand at ssd-disclosure.com.

Old advisory links are broken, and I have trouble finding some even on Internet Archive (my previous tweet is unrelated, IA is still awesome!).

CVE credits seem to have changed as well, but I can't be sure as original versions are not available anymore.

#bitrot
this post | permalink
Next Page