IEEE Secure Development @ieeesecdev practitioners session deadline is approaching! May 14th! 2 pages, practitioners perspective on secure software development. Great platform to dessiminate ideas within the software security research community:.

Two tools released By CISA of late to aid #theatIntel and #threathunting: untitled Goose and Decider! Check them out!.

Join millions who have switched to Grok.

late to write-up the walkthrough this year, but here's my solution to the @KringleCon 2022 #holidayhack challenge! Thank you all and see you next year! . PS. LOVED the LOTR theme this year!

Things I don't expect to be doing around Christmas: rushing to change ALL my #passwords and switching to a different password vault.

here we go again! @KringleCon NOW it feels like Christmas! And the opening theme that's playing is my favorite "Sound of the Shire"!!❤️

I decided to try #ChatGPT for myself. I'm impressed. I asked it to create a CTF with a specific vulnerability in RSA (modulus can be factored) in Python3 and here’s the result

This is beautiful. Convert python to LaTeX here!.

you can now also follow me on Mastodon: @amirootyet@ioc.exchange.

if you're at @LASCONATX, come see my talk: "Close Encounters of the Vulnerable Kind: A DevSecOps Odyssey." . We have the CI/CD pipelines with automation, now let's talk #infosec in those environments!

Thank you, IEEE SecDev! A diverse mixture of academic and industry researchers at @ieeesecdev! Highly recommend attending this conference if you're interested in #DevSecOps.

Excited to be speaking at and attending @LASCONATX 😎conference for the 1st time in October! Looking forward to seeing you all there in person and hanging out, talking #DevSecOps / #CyberSecurity .

Looking forward to attending and speaking at @TheIACP conference on the topic of #cybercrime and #ransomware in October!

I love this primer on "how NOT to generate random numbers" by Nadia Heninger. If you're going to read one #cryptography primer this month, make it this one:

I love when #ransomware devs use predictable seed values in their key derivation 😉 An older but good article by @MalwarebytesLab that's still relevant!

A good summary of what occurred and how. The details on initial attack vector and MITRE ATT&CK mappings are especially useful for #infosec to avoid similar incidents in the future:

This is very important for the future of ML. Since ML packages today allow non data scientists to easily deploy models, it's critical to explain the correct usage to lay people in an accessible fashion.

Our paper on securing #development workflows in CI/CD pipelines is accepted at @ieeesecdev conference! Excited to talk #DevSecOps at Georgia Tech with @lewiada!.

We should be encouraging and publishing more research papers that document what DIDN'T work. Save ourselves redundant effort and then we all win! #AcademicTwitter.

Let's put our GPUs to good use. Elden ring can wait.