social.lol

1 post1 participant0 posts today

J. R. DePriest :verified_trans: :donor: :Moopsy: :EA DATA. SF:During a recent change management call, one of the app teams was talking about running Wireshark on their four app servers to capture an elusive authentication timeout event. They would have to filter for all traffic coming and going to all 16 of our domain controllers and were expecting to run it for up to 24 hours. The networking team lead immediately spoke up and told them that would probably fill their hard drives and use all their RAM and they should probably rethink it. The app team admitted they had no experience with Wireshark and were just following the advice of their vendor's tech support. I asked them why they didn't just use <code>tshark</code> or <code>dumpcap</code> which is how I got roped into helping them with their change. I was able to step in and help them use <code>dumpcap</code> instead of Wireshark. I built them a command that would create 50 MB pcap files and stop when it hit a total file count that was the equivalent to half of the available disk space (each server had the same amount of free space on the secondary drive). I was proud of myself for being able to leverage the shit I've learned OTJ and via my SANS GIAC certifications. It was a little thing, but it saved them a lot of trouble and possibly crashing their servers. It's nice when teams can work together.<a href="https://infosec.exchange/tags/InfoSec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#InfoSec</a> <a href="https://infosec.exchange/tags/Wireshark" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Wireshark</a> <a href="https://infosec.exchange/tags/tshark" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#tshark</a> <a href="https://infosec.exchange/tags/dumpcap" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#dumpcap</a> <a href="https://infosec.exchange/tags/SANS" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#SANS</a> <a href="https://infosec.exchange/tags/GIAC" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#GIAC</a>

Major Hayden 🤠I'm bummed out to see that GIAC stopped doing the Gold certifications in 2022.Back then, you could train for the certification, pass the test, and then level up by writing a peer-reviewed paper on a topic related to your certification.It brought a lot of recognition to the people getting the certs and had an added bonus of extending your certificate's duration. <a href="https://www.giac.org/gold-overview/" target="_blank" rel="nofollow noopener noreferrer" translate="no">https://www.giac.org/gold-overview/</a><a href="https://social.lol/tags/GIAC" class="mention hashtag" rel="tag">#GIAC</a> <a href="https://social.lol/tags/SANS" class="mention hashtag" rel="tag">#SANS</a>

acrypthash👨🏻‍💻Question for the masses: I need to get a cloud penetration tester certificate, but I'd like to have a focus in GCP specifically. I was interested in the GCPN from GIAC, but the areas covered specifically only say AWS and Azure. Does anyone have any recommendations on a GCP specific pen test cert? <a href="https://infosec.exchange/tags/security" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#security</a> <a href="https://infosec.exchange/tags/GCP" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#GCP</a> <a href="https://infosec.exchange/tags/penetrationtesting" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#penetrationtesting</a> <a href="https://infosec.exchange/tags/cert" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#cert</a> <a href="https://infosec.exchange/tags/GIAC" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#GIAC</a>

🐧DaveNull🐧 ☣️pResident Evil☣Rappel: Le logiciel libre, développe dans un cadre universitaire, c'est aussi la possibilité d'ajouter un moteur de calcul formel à des calculettes graphiques *relativement* entrée de gamme. Fonctionnalité qui d’habitude est réservée par les fabricants aux modèles vendues 150-200€ et plus… <a href="https://mamot.fr/tags/XCAS" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#XCAS</a> <a href="https://mamot.fr/tags/GIAC" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#GIAC</a> <a href="https://mamot.fr/tags/khiCAS" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#khiCAS</a><a href="https://www-fourier.ujf-grenoble.fr/~parisse/casio/khicasio.html#sec2" rel="nofollow noopener noreferrer" target="_blank">https://www-fourier.ujf-grenoble.fr/~parisse/casio/khicasio.html#sec2</a>

TindraThe recent post by <a href="https://infosec.exchange/@hacks4pancakes" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@hacks4pancakes</a> reminded me that I've been meaning to type up some thoughts on GIAC test prep. So, here you go! Have some thoughts on <a href="https://infosec.exchange/tags/GIAC" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#GIAC</a> <a href="https://infosec.exchange/tags/TestPrep" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#TestPrep</a> <a href="https://infosec.exchange/tags/Index" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Index</a> <a href="https://tindrasgrove.com/posts/giac-test-prep.html" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://tindrasgrove.com/posts/giac-test-prep.html</a>(Edit to update link due to website redesign)

Kenton RileyI've been silently following & observing for a couple weeks, so it appears I'm overdue for an <a href="https://infosec.exchange/tags/introduction" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#introduction</a> post.Professionally, I've been <a href="https://infosec.exchange/tags/BlueTeam" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#BlueTeam</a> <a href="https://infosec.exchange/tags/infosec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#infosec</a> for about 16 years. I've evolved into more of a policy & guidance role over the years, but I'm also still the <a href="https://infosec.exchange/tags/incidentresponse" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#incidentresponse</a> lead. I'll try to share what I can when I can.The first <a href="https://infosec.exchange/tags/Derbycon" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Derbycon</a> was my first infosec conference I attended. The second through final, I was a volunteer. I've also volunteered for <a href="https://infosec.exchange/tags/CircleCityCon" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#CircleCityCon</a> every year except their 2nd.I'm a <a href="https://infosec.exchange/tags/USNavy" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#USNavy</a> <a href="https://infosec.exchange/tags/veteran" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#veteran</a>, 4x college <a href="https://infosec.exchange/tags/dropout" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#dropout</a> who had no career direction and eventually got an AAS degree in network administration in my 30s. I was working for an employer who had no IT security at the time, so I raised my hand and started my infosec career. I collect IT certs like kids collect pokemon but never submit CPEs - I just move on to another cert. I've had 7 <a href="https://infosec.exchange/tags/GIAC" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#GIAC</a> certs at this point (8th pending), but only 2 are currently active. Also have expired <a href="https://infosec.exchange/tags/PMP" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#PMP</a>, <a href="https://infosec.exchange/tags/CISSP" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#CISSP</a>, and... lots of lesser stuff.Apparently, I make a pretty damn good <a href="https://infosec.exchange/tags/cheesecake" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#cheesecake</a>. Also a serviceable <a href="https://infosec.exchange/tags/mixology" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#mixology</a> home bartender.I've completed 7-ish(?) <a href="https://infosec.exchange/tags/marathon" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#marathon</a> and a handful of half...but weight gain and age have kept me from adding any in the last 4 years. Also have a decent bike that I ride on a stand more than I do outdoors.Most Wednesday evenings you can catch me at <a href="https://infosec.exchange/tags/Zanzabar" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Zanzabar</a> for the Louisville <a href="https://infosec.exchange/tags/Cartoonist" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Cartoonist</a> Society weekly "Drink and Draw." I don't draw, but I have a few friends who do and I enjoy practicing the drinking part.Married, no kids. Both me and my pups (3 of them) are <a href="https://infosec.exchange/tags/snipped" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#snipped</a>.My politics trend very <a href="https://infosec.exchange/tags/liberal" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#liberal</a> and I try to back that up with actions and financial support.

Recent searches

Search options

Administered by:

Server stats:

#giac