Top 7 ways to earn free crypto - Learn how to earn free cryptocurrency with these seven methods, i... - https://cointelegraph.com/news/top-7-ways-to-earn-free-crypto #cryptocurrency #competitions #bugbounties. #airdrops #faucets #staking #surveys #free #earn #ways
#ways #earn #free #surveys #staking #faucets #airdrops #bugbounties #competitions #cryptocurrency
Maybe I should learn how to catch bugs.
Google paid hackers over $12 million in bounties to keep its products secure in 2022 https://www.androidpolice.com/google-vulnerability-rewards-program-12-million-2022/
#Google #Hackers #BugBounties #Secure #InfoSec #TechNews #Android
#google #hackers #bugbounties #secure #infosec #technews #android
I am looking for team up for #bugbounties #bugcrowd #intigriti, I got a custom tool suite to scan internet with. I am looking for subject experts on different cwe to collaborate with.
#bugbounties #bugcrowd #Intigriti
What tools do other pentesters and bounty hunters use to manage their work, notes, and reporting needs? I'd love some input. AttackForge looks interesting but I'd prefer something Open Source personally. #bugbounties #bountyhunting #pentesting #PentestingTools
#bugbounties #bountyhunting #pentesting #pentestingtools
What tools do other pentesters and bounty hunters use to manage their work, notes, and reporting needs? I'd love some input. AttackForge looks interesting but I'd prefer something Open Source personally. #bugbounties #bountyhunting #pentesting #PentestingTools
#bugbounties #bountyhunting #pentesting #pentestingtools
100th post, as fine a time as any to do the traditional #introduction before nobody on #mastodon does them anymore.
Iโm a #hacker , a parent, a founder & CEO, government advisory board member, cat food servant, defender and participant in democracy, & an arm wrestling and karaoke enthusiast โ not necessarily at the same time, but not opposed to trying it all at once either.
Carpe brachium karaoke as they say. ๐ช๐ผ๐ค
Here we go. Get a snack & some water, this is long. ๐ช ๐ฅ
My professional passions include #SystemDynamics & #security with my #focus on helping organizations & governments develop healthy sustainable #VulnerabilityDisclosure programs that may end up growing into a #BugBounty program, or helping existing programs mature & evolve.
๐บ๐๏ธ ๐บ๐๏ธ ๐บ๐๏ธ ๐บ๐๏ธ
๐บI founded & run https://www.Lutasecurity.com & we employ dozens of people, mostly in the US, to help some of our customers manage their #VDPs and #BugBounties as internally-placed personnel.
๐Services: https://www.lutasecurity.com/services
๐ปHiring: https://www.lutasecurity.com/careers
๐ตReferral bounties: https://www.lutasecurity.com/referralbounty
๐บ๐๏ธ ๐บ๐๏ธ ๐บ๐๏ธ ๐บ๐๏ธ
๐ฉ๐ปโ๐ป๐ฐ๐ก๏ธ ๐ฉ๐ปโ๐ป๐ฐ๐ก๏ธ ๐ฉ๐ปโ๐ป๐ฐ๐ก๏ธ
I helped launch #HackThePentagon in 2016, which was the first bug bounty of the US government & the first time it was legal to hack the USG.
๐ฉ๐ปโ๐ป๐ฐ๐ก๏ธ ๐ฉ๐ปโ๐ป๐ฐ๐ก๏ธ ๐ฉ๐ปโ๐ป๐ฐ๐ก๏ธ
This was after I created Microsoftโs first bug bounty programs in 2013, paying out the most at the time for brand new exploitation techniques, which would later lead to me directly helping the US renegotiate the #Wassenaar Arrangement to clarify โintrusion softwareโ and โintrusion software technologyโ export control exemptions to more easily allow for hassle-free exchange of 0day & malware samples across borders for vulnerability disclosure & incident response.
๐ ๏ธ๐ป ๐ ๏ธ๐ป ๐ ๏ธ๐ป ๐ ๏ธ๐ป
I also started two vulnerability research programs, Symantec Vulnerability Research & Microsoft Vulnerability Research. The latter was also the first formal major vendor multiparty #SupplyChain vulnerability coordination & disclosure program.
๐ ๏ธ๐ป ๐ ๏ธ๐ป ๐ ๏ธ๐ป ๐ ๏ธ๐ป
I now serve on 3 Federal advisory boards in cyber.
โ๏ธNIST ISPAB: https://csrc.nist.gov/Projects/ispab/members
๐ฑCommerce ISTAC: https://tac.bis.doc.gov/index.php/documents/members-listing/422-istac-website-listing/file
๐จDHS CSRB: https://www.dhs.gov/news/2022/02/03/dhs-launches-first-ever-cyber-safety-review-board
๐๏ธFun fact: Despite mainstream media lip service about getting diverse voices on TV, and my extensive direct experience in US domestic & foreign cyber policy & norm-setting, I have *never* been invited to be on broadcast news to talk about it. Not one time. But there are the same dudes with none of my experience showing up on TV all the time.
๐บ Email Press@Lutasecurity.com if you can change that.
๐บ๐บ๐บ๐บ๐บ๐บ๐บ๐บ
โ๏ธ๐ธ โ๏ธ๐ธ โ๏ธ๐ธ โ๏ธ๐ธ
๐ฉ๐ปโโ๏ธ Speaking of gender equity, I was the lead plaintiff in the attempted class action gender pay and promotion discrimination lawsuit against Microsoft.
๐ต๐ช๐ผ https://www.theverge.com/22331972/pay-equity-now-pledge-katie-moussouris-microsoft-lawsuit
When it failed to get class certified due to some legal gotchas, NOT because of lack of data and evidence, I decided to drop my case and founded https://www.payequitynowfoundation.org/blog & created
https://www.manglonalab.org/ to fight for #PayEquity in our lifetime.
โ๏ธ๐ธ โ๏ธ๐ธ โ๏ธ๐ธ โ๏ธ๐ธ
๐ธAnother fun fact: Iโm asked about the gender stuff way more often than any of my professional work or national security work. I view this as The Lady Tax & Iโm all paid up thanks.
๐
๐ปโโ๏ธDonโt ask me about how to attract more diverse candidates, donโt ask me to mentor your mentee, and donโt ask me for any more free labor. Donโt ask any historically marginalized people to do free labor, especially to solve your diversity puzzle.
๐๐ผI highly recommend https://blacktechpipeline.com/ if you are serious about not just hiring but welcoming more black workers into your company. There are specialty recruiters out there for you to pay, so donโt ask every woman or person of color you know to help you with that unless they are being paid to do it.
๐๐ผ๐ฐ๐๐ผ๐ฐ๐๐ผ๐ฐ๐๐ผ๐ฐ
๐งฉ Miscellaneous bits if youโve made it this far is that I studied molecular biology, biochemistry & mathematics but dropped out to become a systems administrator, a professional Linux developer, then a hacker for hire.
๐ I still hack by accident (because hacksidents happen), and nobody should have to be the coauthor/coeditor of the International Standards on how to do Vulnerability Disclosure to get an organizationโs attention.
๐ฉ๐ปโ๐ซ ISO standards overview: https://m.youtube.com/watch?v=-L3DNZtK8lc
๐ฒ Clubhouse hack: https://www.wired.com/story/clubhouse-bug-lurkers-ghost/
๐๐๐๐๐๐๐
๐ธ๐ธ๐ธ๐ธ๐ธ๐ธ๐ธ
๐ Despite my entire career being technical, when my company tried for venture capital funding to build something cool, we were met with sexism & lack of imagination & I was hilariously asked more than once if I had a technical cofounder.
Itโs cool, jokeโs on them. Weโre #profitable and growing.
๐คจhttps://www.vice.com/en/article/xgyvza/this-hacker-is-trying-to-close-the-gender-pay-gap-in-cybersecurity
๐ธ๐ธ๐ธ๐ธ๐ธ๐ธ๐ธ
๐๏ธ๐๏ธ๐๏ธ๐๏ธ๐๏ธ๐๏ธ๐๏ธ
I participate in Democracy with more than voting. Anyone with the bandwidth should look into doing it too.
1. Google โfind my Legislative districtโ
2. Go to your State website & search by your address
3. Look up your Legislative Districtโs (LD) website to find out how to join
4. Attend monthly LD meetings
5. Run for Delegate per LD or be appointed like me when not enough people do 1-4
๐๏ธ๐๏ธ๐๏ธ๐๏ธ๐๏ธ๐๏ธ๐๏ธ
๐๐ผโ๐ผ๐๐ผโ๐ผ๐๐ผโ๐ผ๐๐ผโ๐ผ
๐Ending abruptly is on brand for me as a neuroatypical person, so Iโll leave you with this thought:
๐ I named my 17 year old cat Scapy (rhymes with happy) after the Python tool of the same name. Because he is dumb & fuzzy.
๐ธIf you get that joke, you pretty much get me.
๐ค๐ฝ๐ค๐ฝ๐ค๐ฝ๐ค๐ฝ๐ค๐ฝ๐ค๐ฝ๐ค๐ฝ๐ค๐ฝ
โ๐ผBe kind, drink water, touch grass, save the planet, save Democracy, pet cute animals. โ๐ผ
#introduction #mastodon #hacker #SystemDynamics #security #focus #vulnerabilitydisclosure #bugbounty #vdps #bugbounties #hackthepentagon #wassenaar #supplychain #payequity #profitable
As a sort of proper introduction, here's a non comprehensive list of various topics you'll see here:
#floppydisks
#keyboards
#gamedev
#pentesting
#bugbounties
#magicthegathering ( #commander )
#warhammer40k ( #necrons )
#pointandclick #adventuregames
#photography ( #fujifilm )
I will inevitably remember something I forgot from this list as soon as I toot it
#floppydisks #keyboards #gamedev #pentesting #bugbounties #magicthegathering #commander #warhammer40k #necrons #pointandclick #adventuregames #photography #fujifilm
Today's lessons for the kid: #Routing, #ARPANET, #Ethernet, the #OSI model, #MitM attacks, responsible disclosures and its history with RFP, and #BugBounties. It's a lot to cover, but her curiosity was wonderful and took us to all of these places.
#bugbounties #mitm #osi #ethernet #arpanet #routing
This is a prime example of why sites should rate limit their coupon endpoint: https://www.complex.com/sneakers/stockx-100-dollar-coupon-leak-canceled-orders
I have had a lot of #bugbounties marked as wont-fix due to this, but the impact can be massive!
Einige #Kryptowรคhrungsplattformen, die Millionen von Dollar verloren haben, haben ihren Angreifern nun ein ungewรถhnliches Angebot gemacht: Behalten Sie einen Teil des Geldes, aber geben Sie den Rest zurรผck. Ein letzter Versuch, die #Hacker davon zu รผberzeugen, den Groรteil der gestohlenen Gelder zurรผckzugeben. Die Opfer haben bis zu 10 Millionen Dollar geboten und dies mit den #BugBounties verglichen, die an #Sicherheitsforscher fรผr die Aufdeckung von #Softwarefehlern gezahlt werden.
#softwarefehlern #sicherheitsforscher #bugbounties #hacker #kryptowahrungsplattformen
RT @EU_DIGIT@twitter.com
Call to all #EthicalHackers๐งโ๐ป๐ฉโ๐ป to find and fix bugs ๐ชฒ in:
๐น@cryptpad@twitter.com
๐น@joinmastodon@twitter.com
๐น@libreoffice@twitter.com
๐น@Odoo@twitter.com
๐นand Leos
Learn more about this new set of #BugBounties ๐http://europa.eu/!WXPpvM
#opensource #ThinkOpen
๐ฆ๐: https://twitter.com/EU_DIGIT/status/1484111357893091333
#ethicalhackers #bugbounties #opensource #ThinkOpen
@rysiek Source seems to be pjc50 @ HN:
https://news.ycombinator.com/item?id=29414924
Noted by me a day ago here:
https://toot.cat/@dredmorbius/107383837268611099
I'd picked it up via an APPENWAR blog post.
Reminder that every DAO is a self-administering bug bounty for all of the value under its control.
-- pjc50 @ HN
https://news.ycombinator.com/item?id=29414924
#dao #blockchain #bugbounties #hn #VoiceOfWisdom
Pwn2Own 2021: Zoom, Teams, Exchange, Chrome and Edge โfully ownedโ - Two lucky winners scooped $200k for just 30 minutes' work - if you don't count the days, ... https://nakedsecurity.sophos.com/2021/04/09/pwn2own-2021-zoom-teams-exchange-chrome-and-edge-fully-owned/ #vulnerabilities #vulnerability #bugbounties #microsoft #exploits #windows #hacking #pwn2own #google #oracle #apple #linux
#linux #apple #oracle #google #pwn2own #hacking #windows #exploits #microsoft #bugbounties #vulnerability #vulnerabilities
Ethical hackers swarm Pentagon websites - Hackers are crawling all over the US Department of Defense's websites - and DoD officials are quit... more: https://nakedsecurity.sophos.com/2020/03/05/ethical-hackers-swarm-pentagon-websites/ #departmentofdefensecybercrimecenter #usdepartmentofdefense #governmentsecurity #bugbountyprogram #securitythreats #hackthepentagon #vulnerability #bugbounties #whitehat #dc3
#dc3 #whitehat #bugbounties #vulnerability #hackthepentagon #securitythreats #bugbountyprogram #governmentsecurity #usdepartmentofdefense #departmentofdefensecybercrimecenter
Checking out #Matrix. Someone (@coffee_n_weed on ๐ค) created one for #bugbounties https://matrix.to/#/%23bugbounty:matrix.org
Now seeing if there are any other rooms of interest..
(Repost to get their name right!)