Profile avatar
tib3rius.bsky.social
Web App (mostly) Hacker @NetSPI | Cybersecurity Educator | Content Creator | Ex-Brit | Links: http://linktr.ee/tib3rius (he/him) πŸ‡ΊπŸ‡Έ A mostly unserious person.
858 posts 6,401 followers 172 following
Regular Contributor
Active Commenter
Posts 29 Comments 21

submitted 1 hour ago β€’ 0 comments

I've been reliably informed we actually got Googled?

submitted 2 hours ago β€’ 0 comments

Last year we got CrowdStruck. This year we got CloudFlared. Can't wait for next year.

submitted 2 hours ago β€’ 0 comments

I've further decided to limit myself to 12 interviews per year. Mostly because the videos themselves take a lot of effort to edit, but also because I think that makes the series a little more special. So, with that said...who should I interview? πŸ‘€

submitted 8 hours ago β€’ 1 comment

Chris Hadnagy is appealing the lawsuit dismissal against DEF CON. This comes about 3 weeks after he posted on LinkedIn that he would only continue the "fight" if he had the financial means to do so. 😑

submitted 20 hours ago β€’ 4 comments

Watching @tracketpacer.bsky.social give a talk at Cisco Live! www.youtube.com/watc...

submitted 1 day ago β€’ 1 comment

I need to make an apology. At approximately 12:46 PM EDT, I sent a message to a colleague containing the phrase "JWT token". I am deeply sorry for my actions. I would never normally use this language, and I regret it. I hope people can forgive this momentary lapse of judgment. Thank you.

submitted 1 day ago β€’ 5 comments

Everyone loves to hate CVSS, but it's still a widely used way to measure the severity of vulnerabilities. In this video I'll walk you through every metric in CVSS 3.1, even the ones nobody seems to bother with. #EnvironmentalMetricsHaveFeelingsToo Watch now! youtu.be/AlYtTB2aJPE

submitted 1 day ago β€’ 1 comment

Me: oh no, I've made so many hacker stickers I don't have enough containers for them all 😩 Also me: nvm all good. πŸ€“

submitted 2 days ago β€’ 1 comment

Today was an extremely cool day for me, professionally. @zigula.bsky.social and I released our latest bit of security research (hacking Fortnite's Gemini LLM) and I had an absolutely fantastic time speaking with @tib3rius.bsky.social and @swiftsecur.bsky.social on @acrosspondpod.bsky.social!

submitted 2 days ago β€’ 3 comments

Guess how I found out today that Safari on iOS has a hard limit of 500 tabs. 🫠

submitted 2 days ago β€’ 5 comments

I have several new stickers for DEF CON this year and I'm still designing more. Make sure you come find me if you want them. 😁

submitted 3 days ago β€’ 0 comments

Had to order another binder for all the hacker stickers I collect at cons. Good problem to have!

submitted 5 days ago β€’ 1 comment

The biggest disagreement in Cybersecurity is what word to use when a vulnerability is fixed. Fixed, Patched, Mitigated, Remediated, Resolved, Addressed, Hardened, Closed, Corrected, Locked Down, Eliminated, Neutralized, Nuked, Yeeted, Exorcised, Banished, Nerfed Am I missing any? πŸ€“

submitted 6 days ago β€’ 11 comments

Episode 12: Testing Disasters! (Part 2) @tib3rius.bsky.social & @swiftsecur.bsky.social tell more war stories about times they messed up during pentests! Spotify: open.spotify.com/sho... Apple Podcasts: podcasts.apple.com/u... Amazon Music: music.amazon.com/pod... YouTube: www.youtube.com/chan...

submitted 6 days ago β€’ 0 comments

submitted 6 days ago β€’ 0 comments

New video! Getting Into Cybersecurity - An Interview with Rosie Anderson! In this episode, Rosie shares her tips for both newcomers and experienced practitioners, based on 20 years in recruitment! Watch now! youtu.be/pIyCN_mDmJE

submitted 8 days ago β€’ 0 comments

Announcement: My "Getting Into Cybersecurity" interview series is changing a little. The initial purpose of the series was to highlight the different paths into Cybersecurity one can take.

submitted 9 days ago β€’ 1 comment

PSA: ROT13 is a decent encryption cipher, but as you may be aware, prime numbers are very important in cryptography, so always do 2 passes. πŸ‘

submitted 10 days ago β€’ 1 comment

Genuine question. What would a "government" DEF CON group look like and what purpose would it serve?

submitted 10 days ago β€’ 3 comments

I have arrived. #THOTCON

submitted 13 days ago β€’ 0 comments

It's not my birthday but I am balloon now.

submitted 13 days ago β€’ 0 comments

Heading to Chicago for THOTCON. See some of you there. 🀩

submitted 14 days ago β€’ 0 comments

Oh no the hackers got hold of Victoria's secret (key). 😩 www.usatoday.com/sto...

submitted 14 days ago β€’ 0 comments

Got listed as a contributor in OWASP's Application Security Verification Standard (ASVS) 5.0 because I bitched about Session Storage on GitHub. Life is fun.

submitted 15 days ago β€’ 3 comments

This was of course, @phillipwylie.bsky.social. If you don't get the reference... here it is: nitter.net/PhillipWylie...

submitted 16 days ago β€’ 0 comments

Who's that Cybersecurity Clippy? πŸ“Ž

submitted 17 days ago β€’ 0 comments

Putting DNS in the A Tier turned out to be the most contentious part of this. πŸ˜…

submitted 17 days ago β€’ 3 comments

When TracketPacer and I get together, we create amazing things. First it was the improved network communications model, now we've ranked a bunch of network protocols. Enjoy complaining in the comments.

submitted 18 days ago β€’ 5 comments