Daniel Pendolino's Avatar

Daniel Pendolino

@dpendolino.bsky.social

Security Engineer at Ibotta. Single Dad. Nerd.

316 Followers  |  1,503 Following  |  87 Posts  |  Joined: 21.06.2023  |  2.4306

Latest posts by dpendolino.bsky.social on Bluesky

Preview
The Evolution of Offensive Security: Insights from Dave Mayer by Phillip Wylie Show About The Guest(s):Dave Mayer is an Offensive Security professional with extensive experience in Red Teaming and Penetration Testing. He has a background in computer science and has worked for companies like Citibank and Grim before founding Neuvik. Dave is also a mentor and educator in the field of Offensive Security. Summary:Dave Mayer, an experienced Red Team professional, shares his journey in the field of Offensive Security. He discusses his background in computer science, his transition from development to Red Teaming, and his work at Citibank and other consulting firms. Dave emphasizes the difference between Red Teaming and Penetration Testing, highlighting the intent and level of detail involved in each. He also provides insights into when organizations should consider conducting a Red Team operation and the importance of cloud security in today's hybrid environments. Dave recommends learning programming and scripting languages like Python and PowerShell to excel in Offensive Security. He also discusses the role of bug bounties and disclosure programs in finding vulnerabilities and improving security. Key Takeaways: Red Teaming is focused on remaining undetected and achieving a specific objective, while Penetration Testing aims to find as many vulnerabilities as possible across multiple systems. Red Teaming should be conducted after organizations have matured their vulnerability scanning and Penetration Testing processes. Cloud security is crucial in today's hybrid environments, and understanding cloud platforms and APIs is essential for Offensive Security professionals. Learning programming and scripting languages like Python and PowerShell is important for automating tasks and building tools in Offensive Security. Bug bounties and disclosure programs can be valuable for finding vulnerabilities and improving security, but organizations should provide clear contact information for researchers to report vulnerabilities. Dave's social media and Neuvik website: https://twitter.com/dmay3r https://www.linkedin.com/in/dmay3r/ https://www.neuvik.com/

The Evolution of Offensive Security: Insights from Dave Mayer podcasters.spotify.c...

20.05.2025 00:30 β€” πŸ‘ 1    πŸ” 1    πŸ’¬ 0    πŸ“Œ 0

I can confirm that this is an awesome place to work!

15.05.2025 16:25 β€” πŸ‘ 5    πŸ” 1    πŸ’¬ 0    πŸ“Œ 0
Post image

Over 1000 players and 600 teams registered and 48 challenges up at #BsidesSF #CTF

Join them at ctf.bsidessf.net

26.04.2025 23:44 β€” πŸ‘ 1    πŸ” 1    πŸ’¬ 0    πŸ“Œ 0
Preview
Spyro Waving GIF ALT: Spyro Waving GIF

Last wave for the day for #BSidesSF #CTF
* pascals-homomorphism-1
* pascals-homomorphism-2
* slackblock-steg
* amd
* dating
* goto-zero

Check out: ctf.bsidessf.net

26.04.2025 22:59 β€” πŸ‘ 1    πŸ” 1    πŸ’¬ 0    πŸ“Œ 0
Post image

PhD Timeline xkcd.com/3081

25.04.2025 15:32 β€” πŸ‘ 60391    πŸ” 20697    πŸ’¬ 600    πŸ“Œ 832
Post image

You are in for a punny time until launch!

Join us at ctf.bsidessf.net/register, the #BSidesSF #CTF kicks off at 4:00pm PDT tomorrow!

25.04.2025 03:52 β€” πŸ‘ 4    πŸ” 4    πŸ’¬ 0    πŸ“Œ 0

I feel more excited about BsidesSF and RSA this year than I have in other years.

Excited to see people.

25.04.2025 04:28 β€” πŸ‘ 20    πŸ” 1    πŸ’¬ 1    πŸ“Œ 1
Preview
GreyNoise University LIVE

Check out Michael + @itsjordyn.bsky.social this Thursday at Noon ET for another episode of GreyNoise University LIVE! πŸŽ™οΈ Join us as we let you know whats next for GreyNoise, give a product demo, + answer all your questions.

22.04.2025 18:38 β€” πŸ‘ 5    πŸ” 3    πŸ’¬ 0    πŸ“Œ 0

Let's gooooo! This year is going to be fantastic!

19.04.2025 17:17 β€” πŸ‘ 2    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0
fun fact: changing Ctrl+C technically you can use stty to set a different keyboard shortcut for Ctrl+C, like "u" stty intr u this is extremely chaotic and I can't imagine a reason that I would ever do this though

fun fact: changing Ctrl+C technically you can use stty to set a different keyboard shortcut for Ctrl+C, like "u" stty intr u this is extremely chaotic and I can't imagine a reason that I would ever do this though

current status: putting a few weird terminal facts that I do not have any practical use for into the terminal zine

(mostly I’m keeping it extremely practical but I think it's fun to have SOME weird stuff)

17.04.2025 18:31 β€” πŸ‘ 225    πŸ” 23    πŸ’¬ 14    πŸ“Œ 1
why functioning governments fund scientific research
YouTube video by Angela Collier why functioning governments fund scientific research
28.03.2025 20:15 β€” πŸ‘ 510    πŸ” 111    πŸ’¬ 25    πŸ“Œ 17

End-to-end encryption is secure because it protects the contents of your communications in transit between the endpoints. If you make one of those endpoints an editor at The Atlantic, no amount of encryption is going to save you from your own stupidity.

25.03.2025 23:28 β€” πŸ‘ 3203    πŸ” 545    πŸ’¬ 68    πŸ“Œ 29
Murphy: Six Weeks In, This White House Is On Its Way To Being The Most Corrupt In U.S. History
YouTube video by Senator Chris Murphy Murphy: Six Weeks In, This White House Is On Its Way To Being The Most Corrupt In U.S. History

I'd like to bring this video to your attention.

www.youtube.com/watch?v=hyco...

It's doing pretty significant numbers for what it is, so while I understand sharing it won't make a difference for those knee-deep in the cult of personality, I'd say it has a better-than-average chance of resonating.

08.03.2025 20:02 β€” πŸ‘ 9947    πŸ” 3329    πŸ’¬ 105    πŸ“Œ 2
Preview
The Planetary Society Strongly Opposes Mass Layoffs of Probationary… Sudden, indiscriminate layoffs at NASA do not serve the national interests in space leadership.

The Planetary Society strongly opposes the sudden, indiscriminate dismissal of more than 1,000 scientists, engineers, and explorers at NASA β€” the largest involuntary workforce reduction since the end of the Apollo program.

Read more on our stance. ⬇️

18.02.2025 16:47 β€” πŸ‘ 658    πŸ” 293    πŸ’¬ 18    πŸ“Œ 21

πŸ§ͺπŸŒŠπŸ¦‘βš’οΈ

23.02.2025 15:37 β€” πŸ‘ 136    πŸ” 33    πŸ’¬ 3    πŸ“Œ 0
Algorithms are breaking how we think
YouTube video by Technology Connections Algorithms are breaking how we think

This video does such a good job saying what I have been trying to say about commercial AI.

An AI can write a 10th grade lit essay, but the point of an essay assignment is not to produce an essay. The essay teaches critical thinking, research skills, etc. The effort is the point.

23.02.2025 12:13 β€” πŸ‘ 825    πŸ” 124    πŸ’¬ 24    πŸ“Œ 8
BOSTON NBC10 Boston @NBC10Boston Follow A man accused of hacking someone to death with an axe and eating part of the victim's brain and an eyeball has been granted conditional release after a careful review of his clinical progress, officials in Connecticut say.

BOSTON NBC10 Boston @NBC10Boston Follow A man accused of hacking someone to death with an axe and eating part of the victim's brain and an eyeball has been granted conditional release after a careful review of his clinical progress, officials in Connecticut say.

Hacking is NOT a crime

22.02.2025 12:19 β€” πŸ‘ 386    πŸ” 29    πŸ’¬ 24    πŸ“Œ 5
Video thumbnail

I'm a huge foodie, so I had to make this foiled coffee pots drawing!

#food #art #coffee

20.02.2025 17:25 β€” πŸ‘ 32    πŸ” 3    πŸ’¬ 1    πŸ“Œ 0
Post image

My favorite happy fact that I got from @ologies.bsky.social today, that's totally worth sharing and making someone smile. Thanks Alie!

20.02.2025 03:30 β€” πŸ‘ 10    πŸ” 4    πŸ’¬ 1    πŸ“Œ 1
A woman holds a sign that reads, β€œGirls Just Wanna Have Funding for Scientific Research” while holding a photo of her daughter, who died from epilepsy. The sign further reads, β€œWithout research, we’re just guessing. My daughter died of epilepsy. Research will find a cure!”

A woman holds a sign that reads, β€œGirls Just Wanna Have Funding for Scientific Research” while holding a photo of her daughter, who died from epilepsy. The sign further reads, β€œWithout research, we’re just guessing. My daughter died of epilepsy. Research will find a cure!”

I spoke to the woman holding the sign and got more backstory.

Her son has just gotten his PhD in neuroscience, to help find a cure for the epilepsy that killed his sister. His postdoc funding came through right before Trump stopped funds, so he can do his research, but others in his field can’t.

18.02.2025 00:49 β€” πŸ‘ 528    πŸ” 122    πŸ’¬ 5    πŸ“Œ 3
Excerpt from a public letter Roald Dahl wrote encouraging people to vaccinate their children. Olivia, my eldest daughter, caught measles when she was seven years old. As the illness took its usual course I can remember reading to her often in bed and not feeling particularly alarmed about it. Then one morning, when she was well on the road to recovery, I was sitting on her bed showing her how to fashion little animals out of coloured pipe-cleaners, and when it came to her turn to make one herself, I noticed that her fingers and her mind were not working together and she couldn’t do anything. β€œAre you feeling all right?” I asked her. β€œI feel all sleepy,” she said. In an hour, she was unconscious. In twelve hours she was dead. The measles had turned into a terrible thing called measles encephalitis and there was nothing the doctors could do to save her. That was twenty-four years ago in 1962, but even now, if a child with measles happens to develop the same deadly reaction from measles as Olivia did, there would still be nothing the doctors could do to help her. On the other hand, there is today something that parents can do to make sure that this sort of tragedy does not happen to a child of theirs. They can insist that their child is immunized against measles. I was unable to do that for Olivia in 1962 because in those days a reliable measles vaccine had not been discovered. Today a good and safe vaccine is available to every family and all you have to do is to ask your doctor to administer it.

Excerpt from a public letter Roald Dahl wrote encouraging people to vaccinate their children. Olivia, my eldest daughter, caught measles when she was seven years old. As the illness took its usual course I can remember reading to her often in bed and not feeling particularly alarmed about it. Then one morning, when she was well on the road to recovery, I was sitting on her bed showing her how to fashion little animals out of coloured pipe-cleaners, and when it came to her turn to make one herself, I noticed that her fingers and her mind were not working together and she couldn’t do anything. β€œAre you feeling all right?” I asked her. β€œI feel all sleepy,” she said. In an hour, she was unconscious. In twelve hours she was dead. The measles had turned into a terrible thing called measles encephalitis and there was nothing the doctors could do to save her. That was twenty-four years ago in 1962, but even now, if a child with measles happens to develop the same deadly reaction from measles as Olivia did, there would still be nothing the doctors could do to help her. On the other hand, there is today something that parents can do to make sure that this sort of tragedy does not happen to a child of theirs. They can insist that their child is immunized against measles. I was unable to do that for Olivia in 1962 because in those days a reliable measles vaccine had not been discovered. Today a good and safe vaccine is available to every family and all you have to do is to ask your doctor to administer it.

The measles outbreak in Texas is reminding me of the public letter Roald Dahl wrote about losing his daughter to measles in 1962, just before the vaccine was publicly available.

15.02.2025 17:48 β€” πŸ‘ 26825    πŸ” 11805    πŸ’¬ 407    πŸ“Œ 548

The men and women of our military have endured many hardships and even many shameful humiliations at the hands of their country but surely they don’t deserve being put in Cybertrucks.

13.02.2025 05:45 β€” πŸ‘ 2289    πŸ” 342    πŸ’¬ 113    πŸ“Œ 11
Post image

Valentine’s Day is Friday.

11.02.2025 03:04 β€” πŸ‘ 534    πŸ” 56    πŸ’¬ 6    πŸ“Œ 4
Post image

It’s been a tough few weeks. My 10yo daughter was diagnosed with a very rare, aggressive cancer called interdigitating dendritic cell sarcoma (IDCS). I’m reaching out to identify clinicians/patients who have encountered pediatric IDCS or other (non-LCH) dendritic or histiocytic sarcomas cases.

08.02.2025 21:21 β€” πŸ‘ 1014    πŸ” 856    πŸ’¬ 83    πŸ“Œ 32
Video thumbnail

what this song would’ve sounded like if phineas and ferb was picked up in the 90s when it was first pitched πŸ™‚β€β†•οΈπŸβœ¨

GITCHIE GITCHIE GOO MEANS THAT I LOVE YOU βœ¨πŸ’–πŸ₯°πŸ’•βœ¨

Full video on YouTube!
youtu.be/39niUuDUe-4?...

08.02.2025 17:01 β€” πŸ‘ 213    πŸ” 59    πŸ’¬ 5    πŸ“Œ 1
Post image

On Thursday I presented at Way West Hackin’ Fest in Denver to a group of friends, colleagues, and my son! I appreciate this community of people who come together to learn, to be supportive, and to have fun! (Slides and hopefully video shared soon.) Thank you #wwhf!

08.02.2025 13:46 β€” πŸ‘ 7    πŸ” 1    πŸ’¬ 0    πŸ“Œ 0
https://itep.org/tesla-reported-zero-federal-income-tax-in-2024/

Why did my business with no investors & no gov subsidies pay more 2024 taxes than Tesla?
Why did any of us pay more taxes than Tesla, which paid $0 on $2.3B in earnings?
Valued at over $1 trillion, they paid no federal income taxes.
We could end homelessness if corps paid their share
t.co/drH17DF4HP

08.02.2025 19:46 β€” πŸ‘ 100    πŸ” 24    πŸ’¬ 2    πŸ“Œ 1

These are gold. πŸ˜‚πŸ˜‚

08.02.2025 00:34 β€” πŸ‘ 17    πŸ” 3    πŸ’¬ 2    πŸ“Œ 0

@dpendolino is following 20 prominent accounts