Activity
Noted:
WeblogPoMo 2024 Retro
WeblogPoMo 2024 comes to an end today. It was my first time participating and it was a lot of fun! I connected with a bunch of people who were also participating, I mostly* kept up with my writing each day, I cleared out some long-lost draft posts and I explored...
published May 31, 2024 Noted:
5 years
On May 30, 2019 I published the very first post to shellsharks.com, “Getting Into Information Security”. When I first started the blog I didn’t have a particularly clear idea of what I wanted to do with it, but I had the idea to write that piece and one other idea...
published May 30, 2024 Recorded:
The foremost expert on court cybersecurity vulnerabilities?
Join me as I chat with Jason Parker, a Software Developer, Cybersecurity Researcher and Independent Journalist about hacking court systems, punycode, infosec training and more!
published May 29, 2024 Journaled:
Captain's Log, Entry: May 29, 2024
Another very active month for me shellsharks-wise (thanks to WeblogPoMo 2024), you can (as is usual now) peruse the unified list of things added to the site via the Activity feed. 16 notes, 7 blog posts, 2 podcasts and a ton of other page updates, yowza!
published May 29, 2024 Changed:updated May 31, 2024 12:08 pm EST
Weekly Changes 5/27/24-6/2/24
May 31, 2024
- Noted WeblogPoMo 2024 Retro
May 30, 2024
- 5 new infosec blogs this week
- Added ThreatINT to infosec tools list
- Noted 5 years
May 29, 2024
- Journaled Captain’s Log, Entry: May 29, 2024
- Recorded The foremost expert on court cybersecurity vulnerabilities? w/ Jason Parker
May 28, 2024
- Added jdd’s List o’ Links to IndieWeb post
- Added Insikt to infosec team names note
- Added PentestGround to online training list
- Added /Slashes page
Noted:
Podcasting steps
Here are the steps I generally go through in order to produce The Shellsharks Podcast (and an estimate of how long each step takes).
published May 24, 2024 Recorded:
The Shellsharks Podcast is back! (Season 2)
The Shellsharks Podcast is back! Season 2 begins now.
published May 23, 2024 Noted:
Stracting myself
I decided to check out Stract, an open source search engine, as I was curious whether my site was indexed yet or not. Turns out, it is!
published May 23, 2024 Noted:
R7 Attack Intel Report 2024: A few takeaways
Rapid 7 released their 2024 Attack Intelligence Report, an annual writeup containing curated vulnerability data and in-depth analyses of exploit trends. Below I’ve listed a few of my own personal takeaways after reading through the report…
published May 22, 2024 Noted:
CTF vs Enterprise Security
On the difficulty of exploitation in a CTF environment versus actual enterprise organizations…
published May 21, 2024 Changed:updated May 26, 2024 9:38 am EST
Weekly Changes 5/20/24-5/26/24
May 26, 2024
- 12 new infosec blogs this week
- Added User-friendly Big Tech Alternatives | cool as heck to Decorporatization note
- Added SaaS Event Maturity Matrix, malpedia & ETDA Threat Group Cards: A Threat Actor Encyclopedia to infosec tools list
May 24, 2024
- Noted Podcasting steps
May 23, 2024
- Noted Stracting myself
- Added Breach HQ & ssotax.org to infosec tools list
May 22, 2024
- Added IndieWeb Guide to IndieWeb post
- Added Llama Drama to named vulns list
- Noted R7 Attack Intel Report 2024: A few takeaways
- Added slash pages to website component checklist & IndieWeb post
May 21, 2024
- Noted CTF vs Enterprise Security
- Added DNSBomb to named vulns list
- Updated online infosec communities list
May 20, 2024
- Added Linguistic Lumberjack to named vulns list
- Noted 36 things
- Starsharks 100!
- Added Blog of the .Day to IndieWeb post
Noted:
Bowser's crimes
In a previous note, I grumped a bit about how low-stakes the Super Mario Wonder plot is, specifically, how much of a nothing-burger Bowser’s actions were. So I decided to go back through the history of Mario games and list Bowser’s various crimes (attempted and successful) below…
published May 19, 2024 Noted:
Mission Control snapshot
Here’s pretty much what my Mac desktops look like on a daily basis. I have a lot of apps open and tend to do a lot of multi-tasking.
published May 18, 2024 Noted:
Powered by Castopod, Hosted by K&T Host
The Shellsharks Podcast is coming back! Where did it go? Why did it go? Well, life got a little busy, and I just didn’t make time for it I suppose. I really enjoyed the first run of the podcast but never got in a sustainable groove when it came to...
published May 16, 2024 Noted:
Nostalgia Music
Responding to this post from Flamed Fury, I wanted to write about music that I found nostalgic or that I associate with certain memories. I’ll attempt to write these in a chronological fashion as best as my memory will allow… (Note: All music links are to Apple Music listings.)
published May 15, 2024 Noted:
One of us
I recently came across this post where the author laments that the IndieWeb is “not for them”, simply because of their inability to implement Webmentions and thus (as they put it) the “IndieWeb is a social club for developers” only. (See also this one with respect to not feeling part...
published May 14, 2024 Posted:
CSC at Home (Part 3): Vulnerability Management
Practical guidance for implementing CIS Control 3, Continuous Vulnerability Management, in small environments.
published May 13, 2024 Changed:updated May 19, 2024 2:01 pm EST
Weekly Changes 5/13/24-5/19/24
May 19, 2024
- 21 new infosec blogs this week
- Starsharks 99
- Noted Mission Control snapshot
- Noted Bowser’s crimes
May 17, 2024
- Added The Censys Cybersecurity Glossary & NIST CRSC Glossary to Cybercomplexity post
- Added LoFP to infosec tools list
- Posted Trying Harder: A Live OSWE Memoir
May 16, 2024
May 15, 2024
- Noted Nostalgia Music
May 14, 2024
- Noted One of us
- Starsharks 97
- Added SSID Confusion Attack to named vulns list
May 13, 2024
Posted:
CSC at Home (Part 2): Software Inventory and Control
Practical guidance for implementing CIS Control 2, Inventory and Control of Software Assets, in small environments.
published May 12, 2024 Posted:
CSC at Home (Part 1): Hardware Inventory and Control
Practical guidance for implementing CIS Control 1, Inventory and Control of Hardware Assets, in small environments.
published May 11, 2024 Noted:
Songs I was feelin' in 2020
I found an old note in my Simplenote archive (circa August 2020) titled “Favorite Songs”. I thought I’d share it here. Best I can tell, the first part of the list was a ranked “top 12” and everything else was just other songs I was feelin’ at the time.
published May 10, 2024 Posted:
Blogging Methodology
My blogging methodology from ideation to research to writing to editing & finally to publishing.
published May 9, 2024 Noted:
Crystal Six
Though the original Pokemon (Blue/Red) game will forever hold a particularly special place in my heart, I think of Pokemon Crystal as both my favorite and the best of the entire Pokemon series. With the recent legitimization of classic game emulators on iOS, and thus the rebirth of Delta, I...
published May 8, 2024 Noted:
iPad (actually) Pro
#Apple #iPad event kinda a snoozer? The iPad **Pro** needs one if not all of these to push it forward…
published May 7, 2024 Changed:updated May 12, 2024 3:22 pm EST
Weekly Changes 5/6/24-5/12/24
May 12, 2024
- 22 new infosec blogs this week
- Posted CSC at Home (Part 2): Software Inventory and Control
May 11, 2024
- Posted CSC at Home (Part 1): Hardware Inventory and Control
- Added White Intel & AWS API Changes to infosec tools list
May 10, 2024
- Noted Songs I was feelin’ in 2020
- Added GhostStripe to named vulns list
May 9, 2024
- Added threatfeeds.io & No-Nonsense Intel to infosec tools list
- Posted Blogging Methodology
May 8, 2024
- Noted Crystal Six
- Added Pathfinder to named vulns list
- Added The /interests Directory to IndieWeb post
May 7, 2024
- Published /Chipotle page
- Noted iPad (actually) Pro
May 6, 2024
- Posted An Ode to Lost Friends
- Added TunnelVision to named vulns list
Noted:
Favorite movies
A point-in-time look at my ever-fluctuating list of favorite movies (Top 25)…
published May 5, 2024 Posted:
HIRING::::URGENT!::SECURITYSPECIALIST:::REMOTE
A light-hearted analysis of those poorly constructed job emails everyone in tech gets.
published May 3, 2024 Noted:
Ranking fry cuts
French fries are great. Duh!. But how they are cut makes a big difference in how great they can be. Here’s how I would rank different fry cuts 1-10:
published May 2, 2024 Noted:
Be yourself.
I really enjoyed reading this piece by alexandra 🧡. The #indieweb is a place to be yourself, and find others who are, well.. who THEY are. Forget about likes, forget about follower counts, forget about page views. I have found, both in my own experience writing on my site as...
published May 1, 2024 Noted:
WeblogPoMo 2024
Last year, I participated in my very first NaBloPoMo, whereby I attempted to post some writing/content on my site each day for the entire month of November. This year, I have discovered a new blog-posting-month, WeblogPoMo which is pretty much the same thing, just in May. So, I have decided...
published April 30, 2024 Journaled:
Captain's Log, Entry: April 29, 2024
A pretty active month for me shellsharks-wise, you can peruse the unified list of things added to the site via the Activity feed. 17 notes, 2 blog posts, 2 devlogs and a ton of other page updates, phew!
published April 29, 2024 Changed:updated May 5, 2024 10:00 pm EST
Weekly Changes 4/29/24-5/5/24
May 5, 2024
- Noted Favorite movies
May 4, 2024
- Added Hyperlinked Text to IndieWeb post
- Published /interests page
May 3, 2024
- 23 new infosec blogs this week
- Posted Roasting Recruiter Emails
- Added Find Email & PrivacyTests.org to infosec tools list
- Added PPPwn & Dirty stream to named vulns list
- Added Doublespeak.chat to online training list
May 2, 2024
- Noted Ranking fry cuts
May 1, 2024
- Added Sloth to Mac Tools post
- Noted Be yourself.
- Starsharks 96
April 30, 2024
- Added The Big List of Personal Websites to IndieWeb post
- Noted WeblogPoMo 2024
- Added Copilot Money to Mac Tools post
April 29, 2024
- Added URL Cleaner, Bug Bounty List & No Trace Project to infosec tools list
- Added a bunch of tools to infosec tools list from here
- Journaled April 2024 Captain’s Log entry
- Added HookChain to named vulns list
- Added Cyber Threat Intelligence Dashboard to threat modeling post
Noted:
Fediroll
I’m pumped that #blogroll’s are back but in the spirit of sharing follow recommendations for folks on the #fediverse, not just the #indieweb, I wanted to introduce the idea of a #fediroll. This is simply your shortlist of accounts you love and would recommend others follow! Here’s my starting 10...
published April 22, 2024 Changed:updated April 28, 2024 8:28 am EST
Weekly Changes 4/22/24-4/29/24
April 28, 2024
- 6 new infosec blogs this week
- Starsharks 95
April 26, 2024
- Added Azure Threat Research Matrix to infosec tools list
- Added Fediversity to Fediverse page
- Added links to Cybersecurity is full!
April 24, 2024
- Added Proxynova & DNSCheck to infosec tools list
- Added Linux Leo to online training list
April 22, 2024
- Noted Fediroll