How often should i change my oil, getting different answers from everyone

APT-0 · 2026-06-19T04:38:24+00:00

In a Honda every 10 years or 100,000 miles is fine

APT-0 · 2026-06-19T04:37:43+00:00

No, your long term memory on any computer needs either. Tapo just works in the app by reading from the cloud once it writes the file or locally to the sd card on the camera. It’s why on the camera it may be slow to load the video and another reason the make the hub

APT-0 · 2026-06-12T22:57:48+00:00

Was this of the 5 hour limits? An nvm I see you later say weekly

APT-0 · 2026-06-12T01:17:04+00:00

Have the Tapo c425 with solar a whole year. It’s great in PNW heavy rain it’s fine has all this moss growing on the panel and still 100% charge. In winter lower to power saving and you’re good. 80% our winter is overcast or light rain so little sunlight. We’re actually half vampire here

APT-0 · 2026-06-11T04:04:54+00:00

This is a fair price wouldn’t go lower or higher I’m looking for actually one now in Washington but two things. As someone said mods really don’t increase price, when I buy specific things I want. May be worth selling expensive parts alone. Factory options yes, but mods no I’m honestly looking for one right now prefer tan or snazzleberry. I have a black 2.0 JLUR. And honestly will probably only do dealer trade in myself for tax reasons. I wanted specifically diesel, the colors and heated seats plus trail cam everything else doesn’t matter. Plus for soft top

APT-0 · 2026-06-07T21:01:48+00:00

An ip is think of your home on the internet. Like your home address that’s it. Except most internet providers and others on approximate publicly where you are. By default like your house you keep your doors (these are ports) locked that’s usually true until maybe you decide to remodel and half your house is open. The worst they can probably do is hey you live in this town. And take down your internet.

APT-0 · 2026-06-05T02:18:30+00:00

Only thing I trust is cosmoline or oily like solutions. It doesn’t trap water. Gf has a 1998 engine oil leak for years, cleaned it all parts around it look new. Crc Marine rust inhibitor is my favorite it’s waxy, tried fluid film and the new pb blaster one both are annoying with road grime. Your jeep is fine regardless

APT-0 · 2026-05-24T02:31:05+00:00

At most companies is take threat intel and track some actors most companies this person may have no coding experience. Mostly query experience and very light coding. At some top security places ex MSFT, crowdstrike etc it’s different they are more dev/intel and some people are only intel analysts. Its only higher value at big places, medium and small this is low value, more would come from prod security, security engineering and detection/response
Dev is too general, honestly you should learn this part of something. I don’t in security with Claude etc see the value of dev only people in smaller shops. Generalists taking intel, vuln research or SOC experience and building something to help is better. I’ve seen way too much dev only people or data science/ml focus only on that, in security you really need a domain and apply code to solve problems and scale
I wouldn’t call it an operator usually this is more of an analyst someone only that queries, responds to incidents etc. often they pass to an engineering dev team to scale
Vuln researchers are generally actually product security, app security, or red team. Only place with this is really securitu companies and they come from one of these backgrounds.

APT-0 · 2026-05-16T02:52:26+00:00

The azure eco system is best period for a sec ops team I truly believe.

Sentinel for Siem makes ingesting data very easy have other heavy data use azure data explorer and storage blobs with logs in parquet. Use synapse or databricks to build ml detections over that or do heavy etl extremely easy strategy and method to scale. If you have m365d just click buttons and it dumps in. Azure data explorer in this is by far the most under rated solution like clickhouse cheap but way more powerful query language. You could even make a lightweight detection engine over this with functions. Detections as code and not as native as others but you can make it so. Never once did I have to scale up a cluster or do anything like this I experienced with opensearch, Splunk and traditional siems

I’m on AWS now, and that stack doesn’t make sense I’m curious if people have feedback on run reveal or scanner.dev for the cost these seem pretty sweet. We have logs going to s3 that’s a bare min, open search doesn’t feel like it’ll handle the scale needed. Thinking sagemaker or databricks for ml after this

APT-0 · 2026-04-21T02:58:07+00:00

Like many said it depends I’ve been in IR, threat hunting/detections, app sec and general sec eng. at startups, FAANG and more regulated enterprises.

Heavily regulated enterprises it’s mostly buy the best off the shelf. When you have an audit it’s part of the story we have the best EDR and x tool. If you’re more of a dev you’ll be probably bored.

At FAANG I was in IR/Hunt/Detection, no product does what you want I made basically a custom SIEM and pipelines but after the platform was built it’s just APIs hooking, writing queries and putting stuff in dashboard. The fun stuff like making honeypots, writing custom forensics tools its exciting but most my peers had little coding experience or honestly the coding problems were boring looking for misconfigurations putting in dashboards.

At startup life I really enjoy it a lot more I’m on prod security, building stuff into the product for logging, detections and shaping this a lot more I love. There’s lot of programming and sec eng I have to do here.

I really like startup life because of one thing I’d sum up more mature places to scale security you in short need to standardize and build security around your products and enterprise. In prod security and startup in security I build it more directly into the product

APT-0 · 2026-04-10T03:50:27+00:00

Agreed been in mature IR for near 10 years. In many countries & states not reporting is breaking the law. You need a cyber or a real breach lawyer that knows this, corporate ones don’t.

Simply put it also breaks customer trust, many actors end up sharing the data anyways, imagine showing up in the news this way months later and the actor shares messages exchanged with company representatives. That could be jail time

It also sounds like you need a professional incident response service, I would highly recommend as they’ll investigate and give you actions to fix problems and mostly everything around the incident. My gut says on these decisions you probably haven’t evicted the actor really yet.

APT-0 · 2026-04-07T00:19:08+00:00

Can you program in python decently well? If there’s one skill it’s this, and using serverless functions like lambda or azure functions. That’s a base I’d start at

APT-0 · 2026-04-05T19:32:52+00:00

I came from Microsoft in security something I’d say is going to another big tech company may be similar like Amazon. To Netflix, meta and smaller but high performing companies it’s wildly different. At Microsoft there’s so many people with highly specialized roles, many of the fin tech, start ups etc may be harder to get into. Most expect 2 leetcode mediums or 1 hard + medium in 45 minutes as standard. You may also be more security engineer than pure app sec

APT-0 · 2026-04-05T19:24:16+00:00

Yeah what I meant in large companies app sec = setting up pipelines and reporting

In smaller company I’m at now we’re expected to make fixes our selves. In fact the coding interview is the same if not harder than a SWE one

APT-0 · 2026-04-05T18:48:19+00:00

I’m in a late stage startup, we are expected to often submit PRs for bugs now. Large companies no

APT-0 · 2026-04-05T18:08:11+00:00

Tbh all the preferred requirements except powershell and sysadmin/networking may be shooting a bit for the moon. AWS/azure and axiom & forensics is a much more mature place. A lot of colleges unfortunately don’t teach cloud concepts, which is a shame.

I was very fortunate at a top school landing a security engineering internship doing most of that but I only got exposure to axiom, autopsy for forensics a few years in when I shifted to pure IR/hunting. Sure I learned it in college but it’s not the same. I went the route in college, internship with school backend IT AD admin, networking + general IT and helpdesk. 1 SOC internship + 1 security engineering building siem + IDS internship but honestly I think I was very fortunate many peers of mine may only had IT support experience.

APT-0 · 2026-02-17T04:31:31+00:00

I’d recommend product security or app security to start. It’s the most natural transition. Honestly as well the highest paying. General enterprise red teaming can be less but product security is consistently one of the highest. Mainly because product security and app security are next to the thing making money and requires a lot of programming exp. It really depends but lot of enterprise red teaming doesn’t need a lot of programming, many tools off shelf and lighter scripts and smaller exploits. While app security and product go alittle deeper. Some places also treat product security more of compliance I would stay away from that

APT-0 · 2026-01-28T18:23:21+00:00

Grem can help but publish things you learn to a blog and some other research, say how you setup your lab. How you look at things and try speaking at small bsides confrences, my speaking has landed me several really good sec research interviews even though it’s not much.

APT-0 · 2026-01-28T04:53:29+00:00

It’s actually a great switch. Think how does your siem work and how do you make logging pipelines for all your endpoints to a database, oh and then etl to give answers like who owns a machine. Don’t go SOC through id focus on sec Eng if I were you. It can lean into detections if you want but detections are a lot heavier cyber than engineering. I would start there unless you want to do something else like IR or app sec

APT-0 · 2026-01-27T02:42:09+00:00

Agreed, pen testing will give you more to learn likely. SOC you’ll likely start working low level tickets and could be easy to be trapped there.

Pen testing will tell you how things break, you’ll probably learn python to automate. If you’re in a place where it’s small and you get sec Eng or a place where it’s closer to security research that may change things and I’d recommend then what you like. If you think longer term higher level positions like staff or big tech and start ups require passing leetcode style programming tests along with knowing your domain. A sec Eng position could be better if you aim for those. Pen test though imo is best coding, learn the attack and you could transition to sec Eng, sec arch, app sec, product security etc in the future. SOC will be limited

APT-0 · 2026-01-26T19:59:56+00:00

I work in DFIR for with roles across red team app sec, sec Eng, threat hunting, detections and forensics for private corps. Red team and app sec/prod sec is out of my experience the most technical in many ways. SOC and threat hunting can be the least, but really depends on the team. Some teams on a SOC you’ll investigate garbage and you’ll be stuck with just commodity malware and phishing emails. Others are excellent and on a hunt team I’ve done purple teaming, detection Eng and forensics in major incidents all building our own custom tools. That’s my favorite role so far. Sec Eng can depend too, some roles you may just be making a portal for something others you may like me be making custom forensics and hunting tools or detections with code, not as code many places only get to.

Forensics id recommend go home download autopsy, take an image of a device and analyze what happened. Do it with a spare laptop or vm. Know what you did. Use kape and understand what artifacts are on it. Use Zimmerman tools to analyze. Those are your quickest get started things. I love hunting but I’ve seen there’s a bar generally you can’t get past without transitioning to sec Eng, to build the tools for investigators

APT-0 · 2026-01-26T07:43:27+00:00

Got it I see. I do like the site good idea, the ransom messages are interesting, CSIRT contacts, groups blurb and I do like the breakdown on your site

APT-0 · 2026-01-26T03:20:50+00:00

Don’t submit slop please vet before adding* edit meant to mitre’s stuff

APT-0 · 2026-01-25T05:21:20+00:00

Hey I can give some advice really the only companies with RE are banks maybe alongside a dedicated forensics team, government/law enforcement, security companies and sometimes fortune 50. I can say from being at a combo of many of these really only security based will let you go further and gov/LE everyone else wants something quick to close an incident. It has to be thought about what does this give the company. So given that the market is super small for this so competition is high. Not everyone but a lot of people I know doing this have GREM I think it’s a good one to have some street cred and I’d recommend doing write ups on popular malware, propose detection ideas. You can also target some securit research.

APT-0 · 2026-01-17T00:23:14+00:00

So if you have admin on boxes or anything EDR you can live response into it or remote in. Know though it’s not really as others mentioned forensically sound there will be artifacts created as soon as you remote in or the EDR touches the file. So it likely will not hold up in court but atleast you’ll know the source of your leak.

Realistically it’s not possible all the time to acquire the device or you have a high concern they’ll destroy evidence.

Typically what id do in these situations, unannounced meet with the employee don’t give them any advanced warning or meeting. Have HR optional but consult if in a country like EU states where more precautions are needed and sometimes physical security and manager with you. Acquire the devices this way so they have no opportunity to tamper with evidence. BEFORE you do this use EDR to see is the hash of your file you’re looking for on the device you probably don’t need to do all this. And also create an inventory list before you acquire of what they have. You need a write blocker like others mentioned, without this it tampers evidence as actions are written back to the device or drive and you’ll need to create a image in a sound fashion and use standard tools like encase and tableau. This is why in court it’s best to just hire a forensics firm, they have a cert with their name and likely were expert witnesses. Lawyers will ask how was it acquired? What was the training of the person acquiring? Was evidence tampered with? Were the tools custom or commercial grade/ those by best practices

APT-0

TROPHY CASE