Profile avatar
0xosmian.bsky.social
Cursed, with curiosity. Building @osmsec.xyz Pentester at Cobalt.io, Former @offsectraining.bsky.social, @thinkstcanary.canary.tools
40 posts 81 followers 218 following
Regular Contributor
Active Commenter
Posts 27 Comments 23

?

submitted 42 days ago • 1 comment

Our Security Engineer Interns had an exciting HackWeek exploring hardware hacking by pentesting an IoT security camera. www.osmsec.xyz/hacking-an-i...

submitted 47 days ago • 1 comment

Let the hunt begin!

submitted 54 days ago • 0 comments

Introducing www.favihash.com: Generate and search favicon hashes for clearweb and darkweb sites! What didn't exist, we built. Easily calculate favicon hashes and look them up on Shodan, Censys, and VirusTotal.

submitted 56 days ago • 2 comments

Happy new year folks!

submitted 58 days ago • 0 comments

Kids these days don't even know how much opportunity they have to learn hacking from actual pros. I know there is a lot of content out there, so it can be hard to find the good stuff. But 10 years ago you had to be lucky to find at least something. Anyway, watch this 👇

submitted 59 days ago • 2 comments

Dipped my toes into hardware hacking this Xmas, and it was fun! Managed to get a root shell on the D-Link DIR 816 Router via UART. #HardwareHacking #UART #IoT #Security

submitted 63 days ago • 0 comments

Call for SPI flashes at #38C3 I'm developing some SPI-flash tools and want to try a variety of devices and flash chips for testing. Got devices where it's tricky to dump in-system or rare flash chips? I'd love to test them at #38c3 if you can bring them!

submitted 69 days ago • 0 comments

Our router/IoT hacking course is shaping up and it will be 🔥

submitted 95 days ago • 4 comments

At BlackHat-EU in London? Tomorrow you can catch our @marcoslaviero.bsky.social and Jacob Torrey talking about "Defending off the Land". www.blackhat.com/eu-24/briefi...

submitted 80 days ago • 1 comment

@proxmox.bsky.social + @tailscale.com = ❤️

submitted 86 days ago • 0 comments

It's Baaaaaack!! Our Credit Card Canarytokens are out of beta and on your Canarytoken servers.. - Grab one; - Stash it somewhere "safe"; - We will notify you if it's ever used! Read more about it at blog.thinkst.com/2024/12/its-...

submitted 88 days ago • 3 comments

Ruh roh github.com/peass-ng/PEA... "curl -s "http[s]://log.linpeas.sh/?uuid=$(cat /proc/sys/kernel/random/uuid)&id=$(cat /var/lib/dbus/machine-id)&root=$IAMROOT&hostname=$(hostname)&user=$(whoami)&uname=$(uname -a | base64 -w 0)&cwd=$(pwd | base64 -w 0)" > /dev/null 2>/dev/null"

submitted 93 days ago • 3 comments

Read this thread if you wonder how we went in less than 24 hours from a "need" to vizualize Twitter data to TweetPlot, an easy-to-use webapp providing exactly that.

submitted 96 days ago • 1 comment

@bsky.app we need bookmarks!!!

submitted 96 days ago • 0 comments

How long will it take to Clear the sky? @clearsky.app

submitted 96 days ago • 0 comments

Random people's resumes are fun to read...

submitted 98 days ago • 0 comments

We’re seeking a Security Engineer Intern to join our engineering team and work closely with our labs team. In this role, you’ll reproduce the latest CVEs in a controlled environment, analyze their impact, and develop detection rules for Wazuh SIEM based on identified indicators.

submitted 98 days ago • 1 comment

RIP "Within this assessment, the red team (also referred to as ‘the team’) gained initial access through a web shell left from a third party’s previous security assessment." www.cisa.gov/news-events/...

submitted 99 days ago • 9 comments

A tray of RedBull incoming 🥳 #bugbounty

submitted 99 days ago • 1 comment

NEVER buy a .xyz domain for your biz, I repeat NEVER!!!

submitted 99 days ago • 0 comments

Welcome, Twitter diasporai! For new followers: 🤓 I'm a hacker, 🕵️‍♂️ I do digital forensics & cyber crime (investigations), 🎤 and I do public speaking. "Enjoy" my DEF CON 32 ( @defcon.bsky.social ) talk, 'Solving the Lover, Stalker, Killer Murder with strings, grep, and Perl' ➡️ youtu.be/_1GvHMlzXOY

submitted 100 days ago • 1 comment

labs.hackthebox.com/achievement/...

submitted 100 days ago • 0 comments

OK, that's super cool! www.youtube.com/watch?v=DCWc...

submitted 102 days ago • 1 comment

If you know of a wordpress CVE and want a poc generating let me know i'm up for a challenge if i can get the plugin etc.

submitted 105 days ago • 0 comments

The ESP32 Marauder looks cool... www.youtube.com/watch?v=lcok... - github.com/justcallmeko...

submitted 104 days ago • 0 comments

Humans are smart enough never to be fully replaced by AI yet also stupid enough never to make full use of AI.

submitted 105 days ago • 1 comment