sdanndev Profile Banner
Steven Danneman Profile
Steven Danneman

@sdanndev

Followers
185
Following
2K
Media
28
Statuses
267

Security Engineer, finance geek, traveler. @[email protected]

Seattle, WA
Joined January 2017
Don't wanna be here? Send us removal request.
@sdanndev
Steven Danneman
8 years
When you go looking for bugs. you find them.
0
0
1
@sdanndev
Steven Danneman
2 years
RT @JackRhysider: You should be aware of the term "harvest now, decrypt later". At some point, the encryption we use today will be easily c….
0
136
0
@sdanndev
Steven Danneman
2 years
Credit union BECU has turned off Quicken access for 2 months and counting due to cyber attacks. MANY banks still allow user:pass only access to OFX with no MFA, ripe for password spray and reuse attacks.
0
0
2
@sdanndev
Steven Danneman
2 years
My write-up for the #DEFCON31 @paymentvillage Card Hacking Challenge.
2
3
17
@sdanndev
Steven Danneman
2 years
.@Grifter801 what if you make a beer cold by launching it into space? #DEFCON31.
1
2
2
@sdanndev
Steven Danneman
2 years
Thanks @paymentvillage for a fun, realistic, hacking challenge! $100,000 charged and 18 card numbers stolen. #DEFCON31
Tweet media one
1
1
22
@sdanndev
Steven Danneman
2 years
RT @HollyGraceful: SSL/TLS issues come up all the time during PenTests and explaining the technical detail of all of the different TLS conf….
0
107
0
@sdanndev
Steven Danneman
2 years
RT @jra_samba: Just got laid off from Google. If anyone needs SMB 1/2/3 protocol or Open Source experience, I'm interested.
0
95
0
@sdanndev
Steven Danneman
3 years
RT @yacineMTB: if you don't release an API people will build a whole selenium browser automation over it smh.
0
36
0
@sdanndev
Steven Danneman
3 years
RT @travismcpeak: As an industry, security needs to move away from filing a vulnerability Jira ticket and calling it a day. Business risk i….
0
2
0
@sdanndev
Steven Danneman
3 years
The most thorough timeline and technical explanation of the incident I've read so far. A lot of good lessons learned for other companies in this post mortem.
@Magoo
Ryan McGeehan
3 years
A lot has been spoken about Uber case, but I went and purchased the trial transcripts before they were set to release in 2023:. A blameless post-mortem of USA v. Joseph Sullivan.
0
0
1
@sdanndev
Steven Danneman
3 years
RT @Magoo: A lot has been spoken about Uber case, but I went and purchased the trial transcripts before they were set to release in 2023:….
0
21
0
@sdanndev
Steven Danneman
3 years
RT @DafyddStuttard: If you enjoyed the Web App Hacker’s Handbook, I’d encourage you to try out our Burp Challenge on @WebSecAcademy. It’s….
0
5
0
@sdanndev
Steven Danneman
3 years
. @2600 Sorry, I liked this.
Tweet media one
0
0
1
@sdanndev
Steven Danneman
3 years
This is an immediately usable template for communicating unpopular change to your company. Thanks @libber.
@libber
collin
3 years
Thoughts on how to maximize success as an infosec team that needs to roll out changes people may not like - .
0
0
1
@sdanndev
Steven Danneman
3 years
RT @LunaSecIO: Pictured: Proof that Node + NPM is madness. This pic is showing the chain of dependencies leading to a vulnerable package,….
0
20
0
@sdanndev
Steven Danneman
3 years
Who? -> Whoever.What? -> Whatever.When? -> Whenever.Where? -> Wherever.Why? ->.
2
0
3
@sdanndev
Steven Danneman
3 years
RT @feistyduck: From the TLS Newsletter: Coursera announced the much-delayed Cryptography II course by Dan Boneh starting in October. Boneh….
0
3
0
@sdanndev
Steven Danneman
3 years
RT @textfiles: Sumo! Sumo! Sumo! Sumo!
0
1
0
@sdanndev
Steven Danneman
3 years
RT @ipinfoio: Continuing our series of chaotic IP facts: . All of the items below are equivalent to 127.0.0.1. Don't believe us? 🤔 Ping th….
0
58
0