Marc Montpas

@MarcS0h

IT Security Enthusiast, Hacker CTF junkie and Vulnerability Researcher /

Quebec, Canada
montpas.me
Připojil se duben 2014
8 fotek nebo videí Fotky a videa

Tweety

Zablokovali jste uživatele @MarcS0h.

Opravdu chcete tyto tweety zobrazit? Zobrazením tweetů nedojde k odblokování uživatele @MarcS0h.

  1. Retweetnuto uživatelem
    1. 2.

    working remote in infosec and maintaining a healthy mental life requires that you disconnect from time to time or even work outside home some days in a shared office (coworking space), coffee shop, etc. Finding a space that has physical security and privacy is quite complicated.

    7 replies 10 retweetů 92lajků
    Vrátit
  2. Retweetnuto uživatelem
    29. 1.

    Cheat Sheet 2018 Edition Check it out! 😎

    8 replies 189 retweetů 389lajků
    Vrátit
  3. Retweetnuto uživatelem
    22. 1.

    An unspecified time after the impostor syndrome goes away, over-the-hill syndrome moves in: the irrational conviction that you're a burned-out has-been, phoning it in, best days behind you, a broken-down hack whose audience is losing interest rapidly.

    214 replies 1 553 retweetů 6 953lajků
    Vrátit
  4. Retweetnuto uživatelem
    22. 1.

    Video games are becoming a serious attack vector. They are 1) widespread 2) prone to bad vulnerabilities 3) bad at incident handling. Here is a great example: Blizzard agent RPC auth mechanism vulnerable to DNS rebinding. Vendor patch is ludicrous.

    18 replies 474 retweetů 676lajků
    Zobrazit toto vlákno
    Zobrazit toto vlákno
    Vrátit
  5. 16. 1.

    Yet another cool find from :-)

    If you're using the YITH WooCommerce Wishlist plugin for , make sure you update asap to version 2.2.0 There's a SQLi Vulnerability affecting all old versions.
    1 retweet 5lajků
    Vrátit
  6. Retweetnuto uživatelem
    11. 1.

    Try your best to develop robust detections for your own offensive techniques. You’re the best person to do it. You will learn the blue side better, benefit other defenders, and gain insight into how to evade further. Everyone wins. No one benefits from “try to detect me, bro!”

    15 replies 140 retweetů 355lajků
    Vrátit
  7. Retweetnuto uživatelem
    7. 1.

    Really great advice here. This is what worked for me as well. Wish I could spend more time working in assembly though.

    I learned assembly by staring at binaries in a debugger and trying to understand wtf is going on. For Arm, I used the Arm Infocenter to better understand certain instructions. Start with the practical part, and use books/manuals to fill in the gaps. Just jump right into it.
    1 retweet 2lajky
    Vrátit
  8. Retweetnuto uživatelem
    5. 1.

    Meltdown and Spectre

    51 replies 4 949 retweetů 6 430lajků
    Vrátit
  9. Retweetnuto uživatelem
    6. 1.

    Buggy and vulnerable code running on top of buggy and vulnerable layers of software. Somehow, on a macro level, it all works - kinda.

    8 retweetů 13lajků
    Vrátit
  10. Retweetnuto uživatelem
    2. 1.

    Intel CPUs have a security bug that's forced Linux, Windows kernel redesigns. The fix was almost named FUCKWIT

    29 replies 1 365 retweetů 1 465lajků
    Vrátit
  11. Retweetnuto uživatelem
    31. 12. 2017

    Fuck it, dropping a macOS 0day. Happy New Year, everyone.

    137 replies 2 842 retweetů 4 865lajků
    Vrátit
  12. Retweetnuto uživatelem
    29. 12. 2017

    2018

    14 replies 417 retweetů 1 160lajků
    Vrátit
  13. Retweetnuto uživatelem
    19. 11. 2017

    Back in the cartridge era, games were burnt to EEPROMs to test them. Apparently these burners worked by allocating (and not clearing!) EEPROMSIZE bytes and burning them, meaning sometimes random memory contents got included alongside the actual game. Usually this was benign...

    16 replies 380 retweetů 762lajků
    Zobrazit toto vlákno
    Zobrazit toto vlákno
    Vrátit
  14. Retweetnuto uživatelem
    27. 12. 2017

    Phone Security

    29 replies 1 969 retweetů 4 174lajků
    Vrátit
  15. Retweetnuto uživatelem
    24. 12. 2017

    Linux, for the first time, is in the process of merging a security patch that will cause significant slowdown "all existing x86 processors are seemingly affected by information-disclosure vulnerabilities, future processors may not be"

    6 replies 187 retweetů 299lajků
    Zobrazit toto vlákno
    Zobrazit toto vlákno
    Vrátit
  16. Retweetnuto uživatelem
    21. 12. 2017

    Long overdue: All the software produced for the badge is now available in our GitHub repo: . You just need a micro-USB cable to start flashing and debugging! You can emulate any Bluetooth 4.0 or USB device. Hack away! 🎄

    1 reply 10 retweetů 17lajků
    Vrátit
  17. Retweetnuto uživatelem
    20. 12. 2017

    Meanwhile at coinbase

    14 replies 385 retweetů 1 013lajků
    Vrátit
  18. Retweetnuto uživatelem
    19. 12. 2017

    “It’s easy to shit on the people who came before you. They’re usually not around to defend themselves or provide context. It’s a common (but terrible) way to prop oneself up and display an illusion of competence.” { author: }

    10 replies 154 retweetů 363lajků
    Vrátit
  19. Retweetnuto uživatelem
    15. 12. 2017

    The single biggest educational issue in software development: We're not teaching developers that *they're building infrastructure*. Nearly every software issue - security, privacy, reliability... - derives from the developer's idea that they're building a hammer, not a bridge.

    6 retweetů 7lajků
    Vrátit
  20. Retweetnuto uživatelem
    12. 12. 2017

    We've just open-sourced our machine-code decompiler under the MIT license 🤪.

    After seven years of development, we are open-sourcing our machine-code decompiler under the MIT license . More details: . If you have any trouble, please, contact us via or create a ticket on GitHub.
    1 reply 72 retweetů 94lajků
    Zobrazit toto vlákno
    Zobrazit toto vlákno
    Vrátit

Uživatel @MarcS0h ještě neposlal žádný Tweet.

Načítání se zjevně nějak vleče.

Možná je překročena kapacita Twitteru nebo došlo k momentálnímu zablokování. Zkuste to znovu nebo se podívejte na stavovou stránku Twitteru, kde najdete další informace.

    Také by se vám mohlo líbit

    ·