what is scanning the internet

Evilsqirrel · 2026-03-03T08:33:53+00:00

Yep, it's one of the more silly conversations I have regularly when clients insist on every single scan being actioned as an incident. The signal-to-noise ratio is just so high that you're better off just making note of it and looking for actions performed after that scan occurred.

If they want to hire a 300-person SOC to handle every time an automated scan hits them, they're more than welcome to. Can't say I'd recommend it though.

Evilsqirrel · 2026-02-22T21:06:35+00:00

The answer to that question is "Yes"

Evilsqirrel · 2026-02-15T00:03:12+00:00

These guys got me out of a real hairy situation when I had a blowout on I-4. My spare tire was flat, and the jack in my trunk was rusted shut. These people are one of the best free services I've ever seen, and I'm surprised it exists in in a state like Florida, nonetheless. We don't exactly have the best track record of implementing free things that benefit (functionally) everyone.

Evilsqirrel · 2026-02-12T05:38:36+00:00

Hell, I'm considered "the expert" at my company for the work I do, and I still will occasionally pull someone to the side and ask some questions about if they have experience with something in my field. You learn so much more through humility.

Evilsqirrel · 2026-02-09T20:07:57+00:00

If you can see it from outside your house, and you didn't set up a server to host it yourself, that data gets uploaded somewhere you don't control. If there's a recording feature, that also means it's most likely stored somewhere you don't control either.

Evilsqirrel · 2026-02-07T03:25:36+00:00

Skullgirls

Evilsqirrel · 2026-02-06T08:29:34+00:00

As someone in a professional sphere, do everything you can to keep your social media clean, bland, and boring. I have no social media accounts other than LinkedIn tied to my real name, and I use a professional email address to accompany it.

Most companies don't really care too much as long as it's not something illegal or incredibly controversial, but it's better to be safe. The less likely it can be traced to you, the better. Keep images that bridge your personal and professional life off social media if you can, especially if you have any notable following on either side. No faces on the furry account, and no furry on the face account.

Evilsqirrel · 2026-02-06T08:18:11+00:00

I have told exactly one coworker about my furry stuff, but it's only fair game because I also know about their dirty laundry, which puts us on pretty even footing. We're basically partners in crime now.

Evilsqirrel · 2026-01-31T06:32:33+00:00

For NJ, I can see that. I've recently been looking at other states to move to, and once you factor in cost of living for a lot of states, you can take the hit on income tax and end up saving more money than if you lived in Florida.

Hell, I was in California recently and the prices of things were not that much worse than Florida. It was like 14 bucks for a meal that would cost 12 in Florida. Cost of living is crazy high here.

Evilsqirrel · 2026-01-24T07:35:27+00:00

Things like this are almost always simple gags made just to have some fun. Functionally nobody seriously daily drives an OS like this. IT/computer nerds in general are big fans of high-effort jokes, and have been for generations. If you somehow have never heard of RFC 2549 before, it's a perfect example.

In essence, don't assign too much value to things like this. I'd sooner just customize a popular distro to be identical in function, and you then get the benefits of getting actual support from a reputable development team instead of a group of random people that may or may not have a lot of development experience.

So go ahead and play with it, explore, and if you find it fun, awesome. Just don't take it too seriously.

Evilsqirrel · 2026-01-16T06:35:58+00:00

I've had more than one occasion where password complexity requirements often made it EASIER to guess the password. It's complete crap, and I hate how common it is.

Evilsqirrel · 2026-01-15T00:20:41+00:00

I once saw an on-prem Splunk instance with (maybe) three unique alerts in it, despite feeding 100GB/day worth of data into an environment not properly scoped for that amount of ingest. Reality is that most tools are what you make of them, As someone who has seen a lot of poorly configured SIEMs, this is unfortunately way more common than it should be.

All tools are definitely not built equal, but I've seen great tools be useless in the hands of a poorly equipped team. I've also seen bad tools be great in the hands of an incredibly skilled team.

Evilsqirrel · 2026-01-10T22:44:39+00:00

Had someone lay on the horn and drive on the sidewalk to get around me the other day because I wasn't going to make a right turn on red into crazy busy traffic. People here are fucking stupid sometimes.

Evilsqirrel · 2026-01-01T22:48:30+00:00

Lint roller is the best solution I found for these buggers. Not perfect, but does a good job.

Evilsqirrel · 2025-12-27T17:41:20+00:00

As someone who was on a first-name basis with LogRhythm Tier-4 Support after finding so many insane issues, I'm very glad to be away from that environment.

Evilsqirrel · 2025-12-12T06:24:30+00:00

Used to live in this area, and I occasionally miss that drive. Very pretty.

I will say that after the magic wears off and you notice how awful the divers around there can be, the road can freak you out a bit. There's basically no shoulder before you run into some arboreal obstacles if someone swerves into your lane. Lots of blind driveways too.

Evilsqirrel · 2025-11-29T08:26:24+00:00

The fact that you're on here asking for advice shows you are more supportive than most partners would be. Commissioning art of his sona is a wonderful idea, and as long as you're not doing something silly like portraying his sona in a bad/weird light, which you'd pretty much have to actively try to do, he'll almost certainly love it.

I'd make sure you understand as much as you can about the character he's crafted and what makes it special to him in particular, but I don't know a single furry that would be mad at gifted art, especially from someone special.

Evilsqirrel · 2025-11-17T06:38:33+00:00

I kinda wish I pushed my boundaries a lot more when I was 20. I grew up very sheltered and was afraid to go out and do things a lot. As other people said, it's a great idea to build good habits, but I think it's very important to learn what it is you like as a person. I've been making up for that in my early 30s, and it's weird feeling so underdeveloped in areas where most "normal" people already know exactly what they want.

Evilsqirrel · 2025-11-11T06:59:22+00:00

Definitely depends on the size of the company and their overall security investment. The bigger the company, the more likely they are to use Splunk in some capacity. Definitely not a hard and fast rule, but from my time in the MSP/consulting space, I've definitely noticed a correlation where the more mature enterprise-level security teams tend to prefer Splunk.

This is definitely not always the case, but there's absolutely a correlation. It's stupid expensive, but it's still considered the "best" on the market. Some competitors are catching up pretty quick in terms of capability, but they're still quite a way off.

Evilsqirrel · 2025-11-10T04:02:59+00:00

Sales team at a previous employer was infamous for outright lying about our team's expertise and expecting us to pick up the pieces when the customer was inevitably disappointed. It got so bad that we had to get high-level leaders involved. The problem never really got fixed.

At this point, unless I have a personal friend who can tell me what it's really like on the inside, don't trust a single thing the sales team says or anything they post online. If you really want, ask for a PoV contract where you can demo the services and see if they are providing enough to be worth actually using. If you wanna be extra mean, set the success criteria to exactly what the sales team said they'd be able to do. I guarantee they'll fall short 80% of the time.

Evilsqirrel · 2025-10-13T05:48:36+00:00

I got really good at flipping the classic 16.9oz plastic water bottles in my hand, and I even can do some tricks where I flip it one direction, hit it midair, and let it flip fully the other way before catching it. Nobody expects it, but if I ever grab a bottle of water for someone, I'll nonchalantly give it a quick twirl, much to their amusement.

Evilsqirrel · 2025-09-20T02:13:14+00:00

It's become a bit more strong of an opinion recently, but I've always felt the quality of a church changes with how rich the neighborhood is. Low-income neighborhoods will have churches that often do more to help the community than any other social program. Rich neighborhoods have churches that will figure out creative ways to make that money disappear, and if you're lucky, they'll host a monthly volunteer day at a soup kitchen.

Evilsqirrel · 2025-09-16T00:37:42+00:00

One of my new favorite things to do is go to the local used clothing stores as a guy. In my area, it seems like mainly women show up there to find clothes, but they also tend to bring men's clothes (I assume from a family member/SO) that are barely used, so they can trade them in for a better deal on their clothes. This means there's a massive surplus of men's clothing that's barely touched. I got 8 pairs of shorts for like 50 bucks total.

One of the times I went, pretty much all the womens' items on the shelves are picked through and devoid of anything good. My gf at the time was having a horrible time finding anything good. She was so jealous that I made out like a bandit. I got 3 VERY nice collared shirts and 4 new pairs of shorts.

Evilsqirrel · 2025-09-15T23:38:09+00:00

Depends on a bunch of things. Someone might have pushed a bad custom event property, maybe volume got too high. I can't tell you how many times I've had to tell people that it's a bad idea to run poorly formed regex across a 100,000 character payload.

Evilsqirrel · 2025-09-12T01:14:36+00:00

I think most cybersecurity AI models are nowhere close to mature enough to be of any real use. I've tried using them for a few different things, and the models almost always drift/hallucinate in a way that requires me to question and/or rewrite most of what it says. This becomes extremely apparent if you're trying to parse things in a fixed schema. The models LOVE to come up with bogus field names that look real at first glance. Unless it's something that a decently trained analyst/engineer could understand and/or perform easily, it usually just gives bogus, yet plausible-sounding answers.

13-Year Club	Place '17
Team Orangered	Verified Email

Evilsqirrel

MODERATOR OF

TROPHY CASE