@shaunau.bsky.social
Sometimes CTF. Frequently Pentesting. Weight training 4/7.
AppSec Ezine - 610th edition ๐ #AppSec #Security
pathonproject.com/zb/?fac2c832...
Much of this is important for when Claude sessions need to be restarted.
31.10.2025 23:35 โ ๐ 0 ๐ 0 ๐ฌ 0 ๐ 0Lots of planning discussion about architecture, pre-code. Project structure, rules around development. And where documents like IDEAS etc are stored. Use of PROPOSAL files to capture ideas discussed in depth. Important context and information discussed during dev I copy into my own notes files
31.10.2025 23:34 โ ๐ 0 ๐ 0 ๐ฌ 1 ๐ 0On Claude code: flipping between top down planning and bottom up implementation seems to produce pretty decent results. Single agent, review using batcat. Minimal edits with cli emacs to help CC with little things like placeholders. Simple CC.md file, strong documentation.md rules file.
31.10.2025 23:29 โ ๐ 0 ๐ 0 ๐ฌ 1 ๐ 0I guess the plan is to create a crime wave to try and justify the military being deployed
31.10.2025 22:38 โ ๐ 1 ๐ 0 ๐ฌ 0 ๐ 0
Join us in wishing a very spooky halloween and welcome to Jasie, our newest team member! ๐๐
Her official job title is Supervisor. Favourite activities include:
- Threat Hunting (for bikes)
- Security Testing (biting ankles)
- Compliance Monitoring (sniff testing)
Welcome!
Store from VulnLab released on HackTheBox yesterday. It's got a web decryption known plaintext attack, directory traversal, node inspect, and Chrome debug.
30.10.2025 10:00 โ ๐ 2 ๐ 3 ๐ฌ 0 ๐ 0
Never in the history of the US has any president openly and repeatedly called for the investigation, arrest & prosecution of his political opponents. While many continue to shrug these things off and normalize them, I will never stop pointing out that this is what autocrats do.
29.10.2025 22:50 โ ๐ 26763 ๐ 9373 ๐ฌ 1968 ๐ 597
In this talk, they will share their journeys as women building deep technical capability in cyber security, covering different generations, industries, and lived experiences.
Don't miss this one!ย
Find event details here๐
Iโve spent 2 solid hours doing bug bounty and I still havenโt made $200k.
Can someone tell me what Iโm doing wrong?
#bugbountytips
Reach out to @pentesterlab.com
29.10.2025 10:14 โ ๐ 2 ๐ 0 ๐ฌ 1 ๐ 0Found an interesting ruby bug, time to see if it impacts rails. Anyone want to collab?
29.10.2025 08:34 โ ๐ 0 ๐ 1 ๐ฌ 1 ๐ 0The dumbest president in the world!!!
*brrrrrrrrrr* Lights out!
Republicans have no money for SNAP to feed Americans, but when this guy needs $40 billion to bail him out before his election, that becomes Trumpโs #2 priority after his ballroom.
29.10.2025 01:10 โ ๐ 3266 ๐ 1111 ๐ฌ 407 ๐ 91Tim Cook was at Trump's speech in Tokyo today nodding along as Trump spewed lies
28.10.2025 16:17 โ ๐ 898 ๐ 270 ๐ฌ 147 ๐ 41
What a difference four months makes. Imagine selling your house, moving for work and then being laid off anyway.
28.10.2025 18:51 โ ๐ 248 ๐ 74 ๐ฌ 6 ๐ 15Is this situation just an inevitable side effect of capitalism?
28.10.2025 12:49 โ ๐ 0 ๐ 0 ๐ฌ 0 ๐ 0I just donโt get how the fuck all of this has happened - itโs mind boggling how corrupt these pricks are. Someone stop them, for fuck sake.
28.10.2025 12:46 โ ๐ 0 ๐ 0 ๐ฌ 0 ๐ 0
Fortress Trust is insolvent Nevada's Financial Institutions Division has issued a cease and desist order against Fortress Trust, stating that the firm is "on the verge of insolvency". The company admits it "failed to safeguard assets under its custody and is unable to meet all customer withdrawals". The company has only around $1.3 million in actual assets in custody, while it owes customers around $12.3 million. In 2023, Fortress experienced a $15 million theft. Though the company originally announced it would be acquired by Ripple, which had agreed to cover the shortfall, the deal eventually fell through. It's not clear how โ or if โ the funds were ever restored. Fortress's insolvency has strong parallels to that of Prime Trust, another trust company that shares a founder in Scott Purcell. NFID issued a cease and desist to Prime Trust in June 2023 after finding the company was insolvent; in bankruptcy proceedings, that company later blamed much of the insolvency on losing access to a
Fortress Trust is insolvent
October 22, 2025
https://www.web3isgoinggreat.com/?id=fortress-trust-insolvency
Perfect timing for this story to drop on the same day Amazon lays off 30,000 workers due to claims of AI efficiencies.
If companies have less work for people to do, they donโt give you Fridays off, they lay off people until everyone has a full workweek.
๐จ New labs just dropped!
3 new Python Code Review labs are now live on PentesterLab ๐
Learn to spot subtle bugs and insecure patterns by reading real Python code.
๐ฏ pentesterlab.com/badges/python-code-review
#Python #AppSec #CodeReview #PentesterLab
So if a doctor rents an apartment I own, Iโm a doctor?
26.10.2025 22:26 โ ๐ 0 ๐ 0 ๐ฌ 0 ๐ 0โItโs a warningโ cโmon.. how many โwarningsโ do you need?
26.10.2025 09:22 โ ๐ 0 ๐ 0 ๐ฌ 0 ๐ 0Do we expect to see a โsustainably sourced dataโ badge for each SOTA model anytime soon? ๐
25.10.2025 23:47 โ ๐ 0 ๐ 0 ๐ฌ 0 ๐ 0Itโs like feeding pigs their own shit, or feeding humans food made by humans by (from a shit tonne of chemicals) and wondering why every little kid is now a fat fuck with ADHD.
Simply put: garbage in, garbage out
Artificial from HackTheBox is starts with uploading a malicious TensorFlow model to get a foothold through deserialization. I'll abuse Backrest in three different ways for root.
25.10.2025 15:00 โ ๐ 4 ๐ 4 ๐ฌ 0 ๐ 0Iโm pretty fucking sick of newsletters attempting to convert me to a paying customer
25.10.2025 23:31 โ ๐ 0 ๐ 0 ๐ฌ 0 ๐ 0iOS 26 is truly terrible in every way.
25.10.2025 12:53 โ ๐ 2 ๐ 0 ๐ฌ 1 ๐ 0
