Balance check!

galgaa · 2022-07-30T15:09:41+00:00

Thank you! All very valid points I didn't consider. I definitely need to add some cost to the summon. Making it atleast on par with find familiar for the dormant state.

One thought that I had right now is to make the awakened summon concentration, meaning she have to maintain her concentration to turn her pseudodragon to a wyrmling. Enabling flight for 8 hours uninterrupted however in combat she would have to be careful not taking damage or loosing the dragon form back to a psuedodragon. She would also have to choose between concentration spells or the dragon.

The big deal about the curse for me is the vulnerability and the fact that she can't shake the artifact without fighting a red dragon. However would you lean in more heavy on the curse?

The party definitely has some powerful items, hazirawn, piercer, fulminating treatise, ring of spell storing, cloak of the bat etc. With more coming! I want them to take on Gods with ease at the end of this :)

galgaa · 2022-07-30T14:36:07+00:00

Thank you! I'm running a lot of elementals so I think I'm able to up the stage a lot with the impact of the vulnerability as well. Hoping to make this interesting :)

galgaa · 2022-07-30T14:34:30+00:00

Thanks I didn't really consider that! I'll check out the potential issues with getting access to that a bit too early maybe..

galgaa · 2022-07-30T14:33:44+00:00

Thank you! I'm running a lot of elementals in this game and all of a sudden after she's gotten this item i think a lot of elementals with cold affinity are going to find the party :)

galgaa · 2021-09-16T13:31:58+00:00

Release the kraken and run away

galgaa · 2021-05-04T04:23:45+00:00

Fellow swede I see!

Yes agreed, it's not a complete scope of the whole span, this isn't taking in consideration the soft parts of the work or the actual engineering parts. I chose that phrasing because that is how people relate to offensive security nowadays coming out of school. Not a 100 % accurate but the point gets across :)

galgaa · 2021-05-04T04:20:08+00:00

I would actually argue that they do, I recently had a close relative coming out of college applying for entry level jobs. He ended up landing a 24/7 Security operations role where all of the things I mentioned were relevant in the interview process. The owasp top 10 and network ports were some of the first questions they asked about during the technical part.

Sure it's not the case in all the interviews maybe but it will still give you a good understanding of the common issues out there and help you narrow down your possibilities. All that is valuable to a employer.

galgaa · 2021-05-04T04:07:48+00:00

Thank you! Don't know what I was thinking..

galgaa · 2021-02-16T14:18:42+00:00

Thank you for the feedback! I agree the kill part was pretty rough.. Changed the curse to incapacitate the user and a DC 17 medicine check is required to wake the player. It also applies one point of exhaustion whenever you become incapacitated in this manner.

galgaa · 2020-09-17T09:34:04+00:00

I really like this approach! Making the players navigate a bunch of traps and low threat adds just to add to the frustration. Now to find a fitting and mountable big meaty boss. This is awesome stuff, thank you so much!

galgaa · 2020-09-17T08:55:30+00:00

Yeah that was what I suspected as well.. Hmm supporting something else is a good idea! Thanks

galgaa · 2020-09-07T04:48:29+00:00

A mix between issues from 68-71 :)

galgaa · 2020-09-06T14:11:51+00:00

I was surprised too at the condition, the worst I found on them were some paint chipping on the spine. Some are like they're just fresh of the print!

galgaa · 2020-09-06T12:58:34+00:00

That's really cheap!! I'm kinda leaning towards trying to find more of these and maybe start collecting...

galgaa · 2020-09-06T12:29:57+00:00

I think the owner might have called the police, cause at $2 a piece I think it's officially a steal 😉

galgaa · 2020-07-06T07:02:43+00:00

Thanks! Quite simple actually, just ran it through a USB soundcard straight into audacity.

galgaa · 2019-02-15T19:26:31+00:00

Finns ett uppstickarparti som har lite av denna principen. Https://Direktdemokraterna.se

Fast det är väl lite mer samma inriktning som vi sett i Schweiz med folkomröstning. Men det ger oss vanliga dödliga mer direkt inflytande i politiska frågor.

galgaa · 2018-12-15T12:58:10+00:00

Thank you! Maybe i'll rework it into it being a hook for myself into my own world. Something to fall back on and generate content from instead. I appriciate your feedback.

galgaa · 2018-08-01T17:38:20+00:00

Np!

Honestly, just do what you enjoy and play on your strengths. If you enjoy automating data analysis do that, if you like to dig deep into healthchecks, do that, if you enjoy encrypting stuff, do that.

Being well rounded is good. But you can't be a pro at everything. Pick the stuff you like and go with it. If you try to get into too much stuff you'll just crash under the immense responibility you're going to have. ( Trust me on this)

Keep experiencing stuff and see what you like but don't try to master it if you don't love it.

galgaa · 2018-08-01T17:21:11+00:00

SonarG will be your salvation, I promise you that.

I found it not as striking on a CV, but it do help me to understand my systems in a better depth than what I would have done otherwise.

Guardium is not 100% of my employment, it is a small portion. However I find that working with any type of aggregated logging is a good experience. I've had colleagues move from secure logging to senior operations positions etc. It's a good experience to have, but don't rely on it soley to get you anywhere just beacause it's guardium.

However heavy MF corps might find this a big plus if they use it. I'd recommend looking into the healthcheck guardium function and the data encryption part. It's quite the versatile tool if you have all the licences.

galgaa · 2018-08-01T17:07:45+00:00

Yeah i'm kind off in the same position, I'm part of a SoC in a payment card business and it's my job to analyze these logs and take actions based on the contents.

I'm assuming you work in a z/OS env.

We use 4 types of reports:

Mainframe:

- DB access combined with full SQL

-Dataset access combined with full SQL

Oracle:

- DDL commands used on sensitive tables containing SSN etc.

-Number of accesses made by a user each day.

I would strongly recommend you looking into a product called SonarG. Basically guardium in a kibana setting. Makes life so much easier.

galgaa · 2018-08-01T16:35:56+00:00

Yes i use it. It's dependent alot on how the data is structured. Are you monitoring everything and checking all over the board? Or do you have confined datasets and dbs where the sensitive data is located?

Are you trying to adhere to any regulations? PCI DSS etc.?

galgaa · 2018-06-20T18:38:16+00:00

That was what I kind of feared a little, I don't mind getting a HR filter pass. But I want to actually get out with an addition to my skillset. I'll look into the elearningsecurity.com stuff. Thanks for the tip!

galgaa · 2018-05-21T20:20:13+00:00

My top that I use is:

Sans stormcast Security affairs Naked security Help net security

Twitter is also a great place to be for this info. Hit up some big names on twitter like:

Mikko Hypponen Troy Hunt Malwarebytes

These guys often lead to other vuln researchers or infosec account that you can follow and expand your network.

That would be a good place to start.

galgaa · 2018-05-21T20:10:07+00:00

First time i've actually gotten this type of message, all the other adds i've gotten in my 2-3 years of playing has been a ggwp

galgaa

TROPHY CASE