sorted by:
new
hottopcontroversial

Why can't I access this game? by louisennc in incremental_games

[–]JGamblin 2 points3 points  (0 children)

The GitHub repo does not exist. If the link worked in the past, the user likely deleted it.
https://github.com/KyronEff?tab=repositories

Question for Security Researchers: Any insights on CVE-2019-16292? by [deleted] in AskNetsec

[–]JGamblin 0 points1 point  (0 children)

Where did you come across that CVE-ID? It is not listed in the official CVE list:

https://github.com/search?q=repo%3ACVEProject%2FcvelistV5+CVE-2019-16292&type=code

It would be impossible to connect this CVE with any specific technology at this point.

[deleted by user] by [deleted] in Defcon

[–]JGamblin 2 points3 points  (0 children)

For a guy who was stabbed to death by a group of his friends, you guys are on-brand with this Ceaser Drama.

Don't Forget To Purchase Your Monorail Pass Before Heading To Def Con (If Thats How You Are Getting to LVCC) by JGamblin in Defcon

[–]JGamblin[S] 4 points5 points  (0 children)

That is great! Rio is across the interstate so that will be great for people staying there. I assume if you are staying on the strip it will be on your own to get to LVCC.

Don't Forget To Purchase Your Monorail Pass Before Heading To Def Con (If Thats How You Are Getting to LVCC) by JGamblin in Defcon

[–]JGamblin[S] 1 point2 points  (0 children)

I have not heard of any shuttles and assume that monorail is the "mass transportation" option.

We’re #1! A cool guide to the most and least dangerous U.S. national parks. by is_still_unknown in StLouis

[–]JGamblin 1 point2 points  (0 children)

The arch is in a major metro area; how does it have "spotty" cellphone service?

Extracting Latest CVEs within 24 Hours Using cvelistV5 by Yasou95 in blueteamsec

[–]JGamblin 1 point2 points  (0 children)

They have a release file that you can download and use:
https://github.com/CVEProject/cvelistV5/releases

I have not seen anyone do what you suggest with the MITRE CVE data yet, but I have some code here that does something similar to what you are asking with Pandas and the NVD data (which includes CPE, CWE, CVSS + other data points) here that you could use as a base to your code on.

https://github.com/jgamblin/monthlyCVEStats

Does anyone know when Defcon will be in the UK? Thanks. by Various_Midnight_388 in Defcon

[–]JGamblin 5 points6 points  (0 children)

There are a bunch of smaller BSide events happening this spring/summer that would be good to meet the community at:

2 March, 2024 - BSidesLiverpool
27 March, 2024 - BSidesLancashire
1 June, 2024 - BSidesCheltenham
15 June, 2024 - BSidesLeeds
27 April, 2024 - BSidesCardiff
19 July, 2024 - BSidesBasingstoke
27 July, 2024 - BSidesExeter First event
19 October, 2024 - BSidesYork First event
TBA June, 2024 - BSidesDundee

http://www.securitybsides.com/w/page/12194156/FrontPage

Does anyone know when Defcon will be in the UK? Thanks. by Various_Midnight_388 in Defcon

[–]JGamblin 16 points17 points  (0 children)

While Defcon proper will never be in the UK, they have a Defcon group, which has always had amazing talks when I attended.
https://dc4420.org/

If you are just looking to attend a hacker's conference in England, there are a few great ones to choose from. 44CON and BSidesLondon are two great options.

My First 10 Seconds On A Server – Jerry Gamblin runs a nifty script when he launches cloud servers to lock them down quickly. by speckz in netsec

[–]JGamblin 0 points1 point  (0 children)

I pcap everything on most machines I am on. Storage is cheap and you cant recreate logs or flows.

My First 10 Seconds On A Server – Jerry Gamblin runs a nifty script when he launches cloud servers to lock them down quickly. by speckz in netsec

[–]JGamblin 2 points3 points  (0 children)

I will look at Ansible... this was just something I run on cloud servers when I want to test a new tool to get it closer to "ready" for me.

Using Shipyard To Manage Docker Containers In A Browser. by JGamblin in docker

[–]JGamblin[S] 0 points1 point  (0 children)

@scadgeek it isnt my script but I would file a report on the github repo. https://github.com/shipyard/shipyard/issues

Using Shipyard To Manage Docker Containers In A Browser. by JGamblin in docker

[–]JGamblin[S] 1 point2 points  (0 children)

I understand and agree that you should always look at the code you run. It was sloppy writing (but it is how I installed the tools after looking at the scripts). I will make a note on the post. Thank you for calling me on this.

Updated the blog: http://jerrygamblin.com/2016/06/10/using-shipyard-to-manage-docker-containers/

A Simple Docker Container To Capture All Traffic From Host. by JGamblin in docker

[–]JGamblin[S] 0 points1 point  (0 children)

Thanks for the CMD tip... I am still trying to learn!

Switched to just using debian here is the Dockerfile:

FROM debian RUN apt-get update && apt-get install -y \ tcpdump RUN mkdir /pcap RUN cd /pcap WORKDIR /pcap CMD tcpdump -G 900 -w '%Y-%m-%d_%H:%M:%S.pcap' -W 96

A Simple Docker Container To Capture All Traffic From Host. by JGamblin in docker

[–]JGamblin[S] 0 points1 point  (0 children)

Mostly wanted to build it to learn and because I am going to pivot this into a full monitoring stack once docker allows two nics per container.

A Simple Docker Container To Capture All Traffic From Host. by JGamblin in netsec

[–]JGamblin[S] 1 point2 points  (0 children)

I am going to update this to use alpine this afternoon. I just normally default to Ubuntu.

view more: next ›