"Don't worry, the software in question seems to have fallen out of favor and cannot hurt you."
It may not be the software in question, but proprietary snowflake entitlement management software that has a lot of black box and proprietary voodoo, that does not have any disaster recovery capacity and would be considered tech debt a decade ago... Disgracefully came into life in the year 2021. It did not gracefully recover from clownstrike to say the least.
Windows 11 is on hysterical trajectory these days. Recently they pushed in a search bar in the taskbar by default. They should rename it to Bing OS to capitalize. Using windows start menu search will fire off 5 requests to bing, Edge embedded everywhere. Usability out of the box is not only bad, it's net negative. A lot of effort has to be put to disable distracting features. Meanwhile simple file compression support still relies on other applications. For a "professional" or "enterprise" OS that is unacceptable.
As someone who didn't like genepi, I found Verveine du Velay interesting. Perhaps it's less rare herbs, still nice green color, less complex.
I also hope the security conference in Grenoble will secure it's supply of Chartreuse (you get a small 50cl bottle in the welcome package for as long as I remember)
It's stunning how masterfully he integrates ethnographic motives in his works, how fantastical yet familiar the imaginary landscapes feel.
As a kid, I found them deeply inspiring. Visiting his namesake gallery last year, I could appreciate how "Lithuanian" it all felt to me.
This post makes me want to revisit and explore the more musical parts of his œuvre.
That website: “Please provide a complete profile about you and your personality, and we will make all your dreams come true. Don’t worry, we totally won’t sell or leak this data!”
I am also learning pentesting, for the cert and to have some methodology in my job ( somewhere between devops/compliance/security). First week into PWK course, I used hackthebox and thecybermentor's practical pentesting course to build up confidence to attempt getting that long wanted OSCP title.
I've heard that OSCP is a lot more CVE based than hackthebox. It apparently also has a lot more rabbit holes compared to hackthebox. I haven't checked out thecybermentor yet, but a friend of mine has and he seemed to like it as well.
It is more about identifying CVEs and exploits than HTB is, but there is still a good amount of finding misconfigurations, like HTB has. OSCP helps you build a methodology and a mindset for pentesting, and finding CVEs with existing exploits makes that a little easier than HTB, where you are not under time pressure. HTB would be my goto to prep for OSCP, I wish I'd found it before.
You can sometimes grab these ssh keys if the server has a severe directory traversal, local-file-inclusion vulnerability(run server/DB as root) , or to use for pivoting to different user/machine... But never heard of these being exposed outright.
Interesting to see the W/kg measurement all over the place between the same manufacturer and same series phones.
Huawei P8 Lite 0.39, Huawei P8 - 1.72.
It doesn't seem to be a manufacturing requirement for some, as long as it is below a certain threshold. Pricing, release dates, amounts of SIM cards supported have little correlation at a glance.
It may not be the software in question, but proprietary snowflake entitlement management software that has a lot of black box and proprietary voodoo, that does not have any disaster recovery capacity and would be considered tech debt a decade ago... Disgracefully came into life in the year 2021. It did not gracefully recover from clownstrike to say the least.