Daniel Cuthbert
@dcuthbert
Followers
32K
Following
46K
Media
3K
Statuses
16K
Documentary photographer, old creaky hacker. Co-author of @OWASP ASVS standard. Blackhat/Brucon Review Board & Co_chair UK Gov Cyber Security Advisory Board
Airport lounges.
Joined April 2008
Wow, remote OS command injection (from the same network segment) in FreeBSD IPv6 stack via router advertisement packets: https://t.co/8TrK41m96g rtsold passes the unescaped domain search list option from the RA packet to the resolvconf shell script.
3
45
128
Pssst Sick of the AI hyperbole? Come and see what actually is working https://t.co/eufIVq6qjL
0
8
24
When VX brings receipts…
@isabellasg3 @SamouraiWallet Isa, we don't know each other, and you're a person behind this computer, so I don't want to sound rude. Did you actually read the court documents? That's a serious question. I'm asking because, based on what you've said, it sounds like you have NOT read the court documents. The
0
0
0
Forest, MTB’ing and possibly the hardest camera ever made. The mighty Nikon F5. Saw action inside Myanmar with the Karen Rebels, Pripyat (Chernobyl), and now on dad duty Such an amazing bit of kit this
1
0
9
Instagram has some truly amazing human beings. Like Taco El Flako https://t.co/xfV5FmXUQL NGL, the style is inspiring and I am indeed wanting a car and pants.
0
0
0
Global gold ETFs kept the momentum going in November with US$5.2bn in inflows, that’s six months of inflows in a row. Learn more in our latest commentary on gold ETFs.
3
14
84
2026: here’s to less touch screen wank and more buttons. More tactile knobs. More of “I can feel it” https://t.co/8bWOInKdZs
instagram.com
0
1
7
I'm thrilled to share my latest post: Why Packers are Rare and Sus on macOS! 📦 I discuss how macOS's native security mechanisms make traditional packing techniques uncommon, and why third-party packers are often a bad fit for Mac devs and offensive security engineers.
1
8
53
There is just something so compelling, so 'grab you by the neck and make you look...' about large format photography. Bob Thall's work from the 70s and 80s is incredible on so many levels. Maybe it's the depth and scale, or the cars, it just resonates https://t.co/et6Goh3nbN
0
0
10
When @halvarflake writes, i stop and read. Ask your LLM for receipts: What I learned teaching Claude C++ crash triage https://t.co/AiBGSIa92i
1
20
81
Good week for RAPTOR, and thanks the community for all the PR's and patches. Like https://t.co/phktr8fmw7 who added an offsec-specialist skillset We are also working hard on the crash analysis capabilites
1
7
46
Hell, even SAML says this https://t.co/zctBYGbTT3 Yes, I'm totes fun at parties but I'm sick of how lazy SF tech companies are with security and standards. Lazy ass shits, the lot of them
0
0
0
Rules aside, it's also a shit idea. https://t.co/04yA2jvpnM Client-side redirects can be manipulated if the redirect URL is exposed in the page content, they're harder to audit and validate programmatically and tools and proxies can't properly follow/validate the chain
1
0
0
Section 6.4 defines redirect status codes (301, 302, 303, 307, 308) specifically for this purpose. Using a 200 OK with JavaScript to redirect circumvents the intended HTTP semantics for redirection.
1
0
0
Waht in the shittery names of jack and sally... Using a client-side redirect via satans spawn (java lite, or javascript) instead of a proper server-side HTTP 302/303 redirect. Rules, we need dem rules https://t.co/9sPoa1IAup
datatracker.ietf.org
The Hypertext Transfer Protocol (HTTP) is a stateless \%application- level protocol for distributed, collaborative, hypertext information systems. This document defines the semantics of HTTP/1.1...
1
0
0
The more I dig into auth and identity, the more I rage at how so many SaaS companies abuse standards. Lets take the humble redirect where we utilise a secondary IdP
1
0
1
Finally an iPhone was found communicating data, without their permission, to a nation state IP from a country that the other country doesn’t like Yes the BH network is hostile but the NOC teams are all over this like hawks
0
0
3
In a react world, whoever wrote this malware to use this, well ok 9/10
0
0
3
So what annoys Bart? Well Jon… Translation apps with no crypto File syncs in the clear And endpoint protection platform that leak endpoint info and user accounts via HTTP
0
0
2
Always love the @BlackHatEvents NOC session. The stuff they detect, remediate and destroy (bad) is something else
3
0
7