Dominic White 👾 @singe Twitter profile | Pikagi

Pikagi

Dominic White 👾

@singe

12,195

Followers

571

Following

1,823

Media

31,125

Statuses

Hacker @sensepost Socials || || @singe .bsky.social || 51ng3 on

https://t.co/sprgn4cRo7

Joined August 2007

Don't wanna be here? Send us removal request.

Pinned Tweet

@singe

Dominic White 👾

1 year

Earlier this week I gave a talk to our internal hacking teams about the difference between good hackers and great ones that have been able to impact our field. I included three extended quotes - two from writers and one from Hamming that influenced my approach early on. Maybe

Tweet media one

Tweet media two

Tweet media three

5

29

100

Last Seen Profiles

@q_wadley

@CinemaPichii

@CPassion2020

@StwDood38499

@bokeplokalmalam

@lifeofhowie

@joetidy

@WhiteHairBear7

@MOHITTY39105015

@loanDepotpark

@INFO_RC_

@id70ar

@AnthonyCurtis68

@amonyak_41

@ScottAgness

@playonthepitch_

@hamidoudiallo

@bokeplokalmalam

@Osvaldatore

@NikolaVucevic

@Renata_Roa

@bokeplokalmalam

@oldenoughtosay

@SocketDotTech

@stw_pdg

@cukienaknikmati

@ABC_DEFHD

@odosprotocol

@NYKagenda

@ColeMainville

@shan_gram95

@Timpmalonenyc

@slwy41952607

@Muhamad_Almatar

@yu_uen

@atirimzi_

@singe

Dominic White 👾

17 days

CrowdStrike accepting the @PwnieAwards for “most epic fail” at @defcon . Class act.

92

1K

6K

@singe

Dominic White 👾

3 years

Thank goodness the world rushed to stem those cases from South Africa. 🤌

Tweet media one

25

486

1K

@singe

Dominic White 👾

2 years

I did it! ntcrack is now running 57% faster than hashcat for large wordlists! I kind of invented a technique for getting macOS to cache chunks of the file to the kernel file cache very precisely for a dramatic speed increase.

Tweet media one

22

137

839

@singe

Dominic White 👾

4 years

Best lockdown advice I got kicked in today, it was from a mate who’s ex-military. He said “at some point you or your crew are going to be so sick of it you’ll no longer care about the danger and just want to get out - prepare for that and shut it down”

7

172

549

@singe

Dominic White 👾

5 years

I never understood ASMR until this moment.

@JikissGamer

JikissGamer

5 years

Soothing sounds of a 486 booting up. I could fall asleep to the sound of that old hard drive.

77

510

2K

24

76

468

@singe

Dominic White 👾

1 year

This ssh-agent exploitation write up is worth reading to the end. First up the whole chain and how they figured it out is well documented and super interesting. They chain a bunch of shared library loads to create a jump into their executable shell code. But there’s a hidden gem

Tweet media one

Tweet media two

Tweet media three

3

118

435

@singe

Dominic White 👾

4 years

It’s weird that this is a *secret*. Most Ad/analytics SDKs send detailed information for most applications. Apps are the ad blocking workaround the industry found after browsers started marking it harder.

@d1rtydan

Dan

4 years

A guy on reddit reversed engineered #TikTok Here’s what he found on the data it collects on you It’s far worse than just stealing what’s on your clipboard:

Tweet media one

Tweet media two

2K

52K

91K

13

137

411

@singe

Dominic White 👾

3 years

A lot of the time, when I have a writing deadline, I procrastinate with code. With LaTeX I can do both at the same time.

10

50

373

@singe

Dominic White 👾

3 years

Windows 11 now has a subsystem for Android. @AlpacaSec figured out how to use it for his next mobile pentest and wrote it all up so you can too. cc @sensepost

3

143

376

@singe

Dominic White 👾

1 year

Everybody is calling prompt injections “jailbreaks” meanwhile _simo36 is out here getting full code exec chains with Apple’s Neural Engine to remind us what a real jailbreak looks like.

Tweet media one

3

65

353

@singe

Dominic White 👾

3 years

730 days no alcohol, aka Two Years today! Yeeeah Boooi.

29

1

335

@singe

Dominic White 👾

5 years

Here's a detailed write-up of the EAP bug that affected all Apple devices (except watchOS), CVE-2019-6203. It includes a deep dive into MSCHAPv2 there's some code at too

Tweet card media

GitHub - sensepost/understanding-eap: A repository with toy implementations of MSCHAPv2, MPEE and...

A repository with toy implementations of MSCHAPv2, MPEE and WPA/2 to understand EAP better - sensepost/understanding-eap

8

164

313

@singe

Dominic White 👾

5 years

I’ve been waiting for this for most of the year. Craig Koorn built a BloodHound for AWS IAM & related elements. Which finally just got a public release. Hugely useful for securing your AWS environments. cc @0xdabbad00

Tweet card media

GitHub - WithSecureLabs/awspx: A graph-based tool for visualizing effective access and resource...

A graph-based tool for visualizing effective access and resource relationships in AWS environments. - WithSecureLabs/awspx

3

145

310

@singe

Dominic White 👾

4 years

I’m really enjoying the lack of conferences in infosec right now. Just a ton of super accessible blog entries and webinars/streams. It’s so in line with our egalitarian roots, with none of the travel & money barriers we hadn’t really acknowledged were blocking us.

8

36

284

@singe

Dominic White 👾

8 years

Neat trick, drop your payload in a file named CRYPTSP.dll in Downloads & most M$ installers will preload it if run from there. @brompwnie

3

163

261

@singe

Dominic White 👾

6 years

I wanted to understand WebAssembly (wasm) and kept finding developer friendly intros instead of hacker friendly ones. So I wrote one

7

105

243

@singe

Dominic White 👾

6 years

If you’re into WiFi hacking, Fri 4pm Track2 @defcon we’ll be releasing brand new EAP attacks (by @Michaelk654 ), a dockerised WiFi prac env requiring no hardware, a rewritten mana using @bettercap & walking through some lesser known coolness in mana

9

93

246

@singe

Dominic White 👾

3 years

Imagine being the company that didn’t hire Halvar f*cking Flake because he couldn’t recite code over the phone.

@halvarflake

Halvar Flake

3 years

... to my surprise morphed into a C++ interview. I had no pen, paper, or anything else to write; so I had to dictate the solutions to the C++ exercises out if my head. Hadn't coded in a few months (sabbatical), hadn't prepped. Interview did not go great.

4

2

77

6

19

247

@singe

Dominic White 👾

5 years

“Welcome to Berlin, Mr. Musk. ❤️“

10

109

231

@singe

Dominic White 👾

4 years

500 days no alcohol! 🎉

@singe

Dominic White 👾

4 years

Day 365, One Year no alcohol! 🥳

19

2

222

9

4

222

@singe

Dominic White 👾

2 years

iOS 16 finally lets your edit the “Known Networks List” on your device! I had hundreds in there, many I haven’t used in years.

Tweet media one

16

68

222

@singe

Dominic White 👾

4 years

Day 365, One Year no alcohol! 🥳

@singe

Dominic White 👾

4 years

Day 335, 11 months!

2

0

29

19

2

222

@singe

Dominic White 👾

4 years

iOS 14 adds random MAC address when you join a WiFi network to prevent tracking your device at an Ethernet level. Interestingly, the locally administered bit isn’t set so you can’t tell it’s random. I wonder if it does it at WiFi frame level?

Tweet media one

11

59

221

@singe

Dominic White 👾

7 years

If you're feeling imposter syndrome in the hacking scene. The sprint retrospectives from the CIA leak should cheer you up.

Tweet media one

4

151

217

@singe

Dominic White 👾

3 years

I have a problem. I can solve it with threading. now problems. more have I

12

23

220

@singe

Dominic White 👾

7 years

A comprehensive set of VMs to learn/teach the many ways of privesc on Windows & Linux hosts by @s4gi_ He’s even got a nice attack tree of each vuln.

Tweet media one

1

113

209

@singe

Dominic White 👾

6 years

I love how @defcon has a clear purpose & keeps the hacker aesthetic alive.

Tweet media one

3

50

198

@singe

Dominic White 👾

5 years

This write up of the 2016 Bangladesh SWIFT hack from end to end including technical & criminal info is amazing When I talk about emulating criminals, this is what I mean. Red Teamers spend so much time faffing on low ROI activities for customers.

7

82

203

@singe

Dominic White 👾

3 years

🎉We're super excited to publicly release assless-chaps, our super fast MSCHAPv2 cracking tool Our DEF CON @rfhackers Village talk with @_cablethief & me explaining it is out Our new hashcat modes 27000/27100 have been merged too!

Tweet card media

DEF CON 29 RF Village - singe and cablethief - Assless Chaps

Assless Chaps: a novel combination of prior work to crack MSCHAPv2, fast (or why MSCHAPv2 is so broken, it’s showing it’s whole ass)"Cracking intercepted MSC...

www.youtube.com

8

91

198

@singe

Dominic White 👾

17 days

Something in @doctorow ’s @defcon talk has been sitting with me all day. To summarise badly: Tech workers were looked after when it was a scarce skill. The layoffs make it clear it isn’t as scarce anymore. As the saying goes - the future is here just not evenly distributed. 1/2

3

25

190

@singe

Dominic White 👾

6 years

A brief and incomplete history of embarrassing auth bypass bugs: 2006 RealVNC 2007 Solaris telnetd 2012 MySQL 2018 libssh

9

96

178

@singe

Dominic White 👾

6 years

I've been on Twitter for 11 years today, and as much as everyone disses it, I've gotten so much from it. The little security niche we have on here is pretty epic.

11

13

181

@singe

Dominic White 👾

3 years

F*ck yeeeeesss, finally. Multi-threaded rust NThash cracking M1 Pro CPU beating hashcat Metal GPU for every metric. (hashcat all rockyou hashes left out because it takes over 10mins)

Tweet media one

8

23

176

@singe

Dominic White 👾

7 years

The hardest part of modern malware delivery isn't bypassing AV it's trying to work out what bloody prompts each version of office will pop.

6

49

164

@singe

Dominic White 👾

2 years

Do you need to grep large files often? I just published singrep It's short for "singe's grep". It's very fast on a modern Linux/macOS systems using single file parallelism. On my MacBook Pro it's twice as fast as rip grep & 47x faster than normal grep.

Tweet card media

GitHub - singe/singrep: singe's grep - a fast grep using single-file parallelism

singe's grep - a fast grep using single-file parallelism - singe/singrep

4

58

166

@singe

Dominic White 👾

2 years

Proposal to introduce “asshat” into the hacker lexicon. For ransomware gangs going after hospitals and schools.

@charlvdwalt

Charl van der Walt 🌻

2 years

@singe @ElleArmageddon Let’s put a challenge out to tech journalists to officially adopt the the terms blackhat, Whitehall, grayhat, and asshat.

2

2

15

6

46

166

@singe

Dominic White 👾

8 years

I got sick of being restricted by wifi frequency regulation and made this for the discerning wifi hacker.

Tweet card media

GitHub - singe/wifi-frequency-hacker: A modified frequency regulatory domain configuration that...

A modified frequency regulatory domain configuration that doesn't limit you. - singe/wifi-frequency-hacker

5

104

159

@singe

Dominic White 👾

6 years

We’ve used @_cablethief ’s new EAP relay attack in some live projects @sensepost It’ll get you on the network while you crack the MSCHAPv2 challenge/response. Cryptobinding should prevent it, but it’s not enabled by default (I’m guessing due to a lack of practical attacks)

Tweet media one

Tweet media two

3

76

164

@singe

Dominic White 👾

3 years

*boom*

Tweet media one

13

0

152

@singe

Dominic White 👾

6 years

Just finalised this year's @sensepost artwork. Presenting Just Another SensePost Hacker. An old skool cyberpunk with the winner of our internal polyglot competition on the HUD (inspired by old Just Another Perl Hacker competitions). Stickers & shirts will be available in Vegas.

Tweet media one

20

26

148

@singe

Dominic White 👾

17 days

Abused amazon delivery/warehouse workers are the tech worker future. The only defense is to unionise. 2/2

5

19

149

@singe

Dominic White 👾

1 year

I really appreciate how accessible @taviso makes his write ups. His processor use-after-free discovery is super interesting In particular the bit at the end where he described how he generated two equivalent pieces of assembly that executed differently

Tweet media one

2

34

144

@singe

Dominic White 👾

3 years

600 days no alcohol! 💪

@singe

Dominic White 👾

4 years

500 days no alcohol! 🎉

9

4

222

13

2

145

@singe

Dominic White 👾

5 years

If pentesters were any good at emulating real criminals they’d know how to launder money.

29

21

144

@singe

Dominic White 👾

4 years

I'm super biased, but I still think this is one of the most underrated techniques to come out of last year

7

18

111

@singe

Dominic White 👾

1 year

When you land in Vegas for BlackHat they force you to choose Red Tram or Blue Tram.

Tweet media one

22

11

140

@singe

Dominic White 👾

1 year

We’ve taken pretty much all the Active Directory tradecraft from the years and distilled it into this @sensepost course. The hard part has been finding the Goldilocks zone for intermediate hackers - not too entry level, not too AD 1%, but just right. It’s being given at @x33fcon

Tweet media one

6

23

138

@singe

Dominic White 👾

5 years

Congrats to @leonjza for becoming the new CTO of @sensepost . I couldn't think of a better person for the job. He understands our values instinctively; making the world safer, constant learning & sharing, and an intense integrity. I know he'll rock it.

Tweet card media

SensePost turns 20

This month SensePost celebrates its 20th birthday and celebrates new opportunities.

mybroadband.co.za

28

21

139

@singe

Dominic White 👾

3 years

My whole immediate family has tested positive for COVID. Only 3/5 of us had symptoms. I was the worst, had three rough days but feel better today. Thank goodness I was double vaxxed.

29

0

138

@singe

Dominic White 👾

3 years

900 days no alcohol 🎉

@singe

Dominic White 👾

3 years

600 days no alcohol! 💪

13

2

145

8

0

139

@singe

Dominic White 👾

2 years

Inspired by @Niki7a 's request - here's a Hellfire Hacking Club t-shirt/sticker design you're welcome to use. It's a stylised Eddie playing the season finale's guitar solo in the upside down. See you at @defcon

Tweet media one

Tweet media two

9

29

132

@singe

Dominic White 👾

4 years

All 4 hours, 48 minutes and 48 seconds of this workshop are now up on the YouTube Slides below. GitHub repo at

Tweet card media

GitHub - leonjza/frida-boot: Frida Boot 👢- A binary instrumentation workshop, with Frida, for...

Frida Boot 👢- A binary instrumentation workshop, with Frida, for beginners! - leonjza/frida-boot

@leonjza

_leon_jacobs(💥)

4 years

Going live in 20 minutes. The slides are public now as well! See you shorty!

2

23

57

0

64

135

@singe

Dominic White 👾

1 year

The EDR advert vs reality 😂

@NoContextHumans

Out of Context Human Race

@NoContextHumans

1 year

191

8K

63K

4

31

130

@singe

Dominic White 👾

5 years

Day 183, 6 months!

@singe

Dominic White 👾

5 years

Day 70 no alcohol!

9

0

94

7

0

129

@singe

Dominic White 👾

6 years

Just in case, for my non-ZA hacker friends, there is no white genocide in South Africa. It’s a myth being pushed by far right racists. @AfricaCheck is an independent fact-checking group who have good detail on it

Tweet card media

Claims about ‘white genocide’ in South Africa unsupported

“White genocide in South Africa is real,” prominent American alt-right activist and author, Mike Cernovich, recently tweet. White genocide in South Africa i...

africacheck.org

@realDonaldTrump

Donald J. Trump

@realDonaldTrump

6 years

I have asked Secretary of State @SecPompeo to closely study the South Africa land and farm seizures and expropriations and the large scale killing of farmers. “South African Government is now seizing land from white farmers.” @TuckerCarlson @FoxNews

38K

25K

82K

6

95

125

@singe

Dominic White 👾

2 years

Impromptu analog synth party kicking off in packet hacking villlage. @dcuthbert you’d love this. cc @defcon

Tweet media one

3

11

123

@singe

Dominic White 👾

3 years

A tool for creating NTHash lists from wordlists, fast - nthasher. On my laptop on battery it's chews through rockyou in 2.8s

Tweet card media

GitHub - singe/nthasher: A fast wordlist to nthash converter

A fast wordlist to nthash converter. Contribute to singe/nthasher development by creating an account on GitHub.

4

34

125

@singe

Dominic White 👾

6 years

If you're a MBP macOS user with a touch bar, this will let you use sudo with touch ID: sudo sed -i.bak $'2i\\\nauth sufficient pam_tid.so\n' /etc/pam.d/sudo

2

44

124

@singe

Dominic White 👾

1 year

I nearly forgot about my 4 year anniversary of no alcohol today 🎉 It usually comes around pre-Vegas.

Tweet media one

16

2

123

@singe

Dominic White 👾

5 years

Tweet media one

8

30

119

@singe

Dominic White 👾

5 years

Of all the security design and architecture things I've been involved in over the years, the one that gives me the most regular contentment is the advent of static websites. Run the dynamic site internally, publish the static externally, serve via CDN. Nothing to hack.

10

24

119

@singe

Dominic White 👾

6 years

mana can now capture WPA/2 handshakes in hashcat hccapx format directly. Will push the commits public in the morning.

4

40

117

@singe

Dominic White 👾

2 years

I was watching a TLP Red presentation on tracking actors in a #threat group, and the researcher used advertising intelligence #ADINT to get precise #location data. I hadn’t heard the term and found this paper

3

30

114

@singe

Dominic White 👾

1 year

TIL this useful tidbit - for non-PE files Defender will only scan the first and last 4030 bytes of the file. via this talk

0

32

118

@singe

Dominic White 👾

2 years

w00t first t-shirt print is here!

Tweet media one

14

3

115

@singe

Dominic White 👾

3 years

I strongly disagree with this. Tool building when exploring a problem space is hugely useful. For e.g. when I first had to start poking at mainframes I built tools to explore each new level of surface area I got access to & it helped immensely.

@jevakallio

Jani Eväkallio

3 years

Repeat after me

Tweet media one

12

34

400

8

13

115

@singe

Dominic White 👾

6 years

As part of my mission to make wifi hacking more accessible, I've created a free, online & interactive @teamKatacoda course on monitor mode, WPA cracking & tshark. It's quick (and alpha). I'd love some feedback & sharing:

2

46

113

@singe

Dominic White 👾

6 years

Wanted to start collecting container breakout techniques. Pull requests welcome. Here's an example of the filehandle technique. @_staaldraad had a hand in it too.

Tweet media one

Tweet media two

Tweet media three

1

55

112

@singe

Dominic White 👾

5 years

It's @sensepost 's 20th birthday today, & a month since my 10th year anniversary. It's been amazing; from sleep deprived months building things on foreign shores, the fear in a friend's eyes before they stop onstage @defcon for the first time, to ^5's after some pwnage.

8

7

115

@singe

Dominic White 👾

4 years

Save yourself a pentest; @ollieatnccgroup wrote down the most common ways red teams will breach you, & how to defend against them in an easy to read writeup at: Do these *before* you start on a red team program, or use them as outcomes for purple.

Tweet card media

Paper: Thematic for Success in Real-World Offensive Cyber Operations – How to make threat actors...

tl;dr Today we’ve released a whitepaper on the key techniques that continue to enable us to breach the largest and most sophisticated organisations on the planet. Organisations that prioritiz…

research.nccgroup.com

3

38

111

@singe

Dominic White 👾

1 year

Silently trigger a @ThinkstCanary token when someone views a text file in a terminal (e.g. cat). From @stokfredrik 's BlackHat talk Caveat - the terminal must support OSC7 (macOS does).

Tweet media one

Tweet media two

6

34

106

@singe

Dominic White 👾

20 days

This WiFi mesh talk was great - they just ARP spoof and the routers happily spit out backhaul mesh traffic onto the front end WiFi network. Then the control protocols are all super vulnerable.

Tweet media one

4

28

109

@singe

Dominic White 👾

2 years

The @mybroadband team asked me to comment on how to protect yourself after the latest data leak. Instead I suggested we should put pressure on legislators to not give credit bureaus so many privacy exceptions in our legislation.

Tweet card media

What South Africans can do to protect themselves after huge data leaks — bad news from a hacker

The solutions for consumers who have been affected by data breaches are not good enough.

mybroadband.co.za

5

22

107

@singe

Dominic White 👾

1 year

Heh shades on the stage! I’m excited for @stokfredrik ’s talk.

Tweet media one

2

3

102

@singe

Dominic White 👾

1 year

New WiFi vulns that downgrade power save buffered frames! As always @vanhoefm has usable code ready to go, this time without limitations to specific atheros cards. The readme is also super accessible if you aren’t the type to read the paper.

Tweet card media

GitHub - vanhoefm/macstealer

Contribute to vanhoefm/macstealer development by creating an account on GitHub.

1

46

102

@singe

Dominic White 👾

4 years

Slides for the x86_64 workshop we gave earlier are up at You can build the Dockerfile or pull the image from singelet/x86_64_workshop:latest if you'd like to play. We'll try clean up the recording and post it later. Thanks for joining us at 0xC0FFEE.

3

49

101

@singe

Dominic White 👾

5 years

When I was young, @haroonmeer taught me two super important things 1) Stop lying about your motivation. Don’t pretend you aren’t doing it for fame or validation from respected peers or whatever floats your boat just because it doesn’t sound lofty and beautiful. 1/5

5

30

99

@singe

Dominic White 👾

4 years

Ugh! I’m so sick of women in infosec! With their competence. And resilience. Thanks for sticking around.

3

2

98

@singe

Dominic White 👾

5 years

I shaved my beard and went as an insurance salesman for Halloween, because that’s what infosec is anyway.

Tweet media one

11

4

100

@singe

Dominic White 👾

4 years

Unpopular opinion; it's awesome that a CISSP counts as a Masters degree! Anything which lets people hack the stupid degree requirements the world has baked in the better. If you weren't fortunate enough to get a degree - go get a CISSP and claim it!

15

7

96

@singe

Dominic White 👾

6 years

If you want to extract the certificates used in EAP (TLS/PEAP/TTLS etc.) interaction, you can use this Useful for closing them with especially when going after macOS/iOS clients (who will present the cert details & ask the user).

Tweet card media

GitHub - sensepost/apostille

Contribute to sensepost/apostille development by creating an account on GitHub.

@MarkRaatsWiFi

Mark Raats

6 years

Thanks @blong1 for the trick to get the certificate out of wireshark for EAP-TLS. #WLPC

1

0

8

2

36

96

@singe

Dominic White 👾

3 years

Ok, pretty sure I have a new cryptanalysis against MSCHAPv2. *woot*

@singe

Dominic White 👾

3 years

Me: “Don’t write the full PoC now. It’s late and it’s been a long day. Come at it with fresh eyes in the morning.” Also me: *lays awake thinking about the code all night*

7

8

92

1

9

96

@singe

Dominic White 👾

2 years

3 years no alcohol today!

@singe

Dominic White 👾

3 years

730 days no alcohol, aka Two Years today! Yeeeah Boooi.

29

1

335

8

0

96

@singe

Dominic White 👾

3 years

You can get cmd exec with a simple cmd in your Whois info for an IP you control “~| <cmd>” then triggering a ban. The vuln is a chain from fail2ban’s mail-whois action invoking mailutils “mail” but not sanitising cmd exec keywords in the Whois info piped to it.

@securitum_com

Securitum

3 years

Our pentester, @zoczus , identified a possible RCE in fail2ban: Make sure to update!

1

79

227

2

37

92

@singe

Dominic White 👾

5 years

Day 70 no alcohol!

9

0

94

@singe

Dominic White 👾

1 year

Good morning Vegas.

Tweet media one

7

1

93

@singe

Dominic White 👾

5 years

Simultaneously honored and deeply embarrassed by the profile on me by @mybroadband . The bit they cut, but I think is really important to note, is that if more kids had access to computers at the age I did, this could be the norm.

@mybroadband

MyBroadband

5 years

South Africa's renowned white hat hacker

3

25

75

5

13

94

@singe

Dominic White 👾

1 year

Spent the night hacking. #midjourney

Tweet media one

7

4

93

@singe

Dominic White 👾

4 years

This is one of the most needlessly elaborate Linux persistence approaches I've made. Creates a malicious dynamic linker that will suid any file dropped in /tmp/sensepost. Dockerfile'd for demo purposes.

Tweet media one

2

27

94

@singe

Dominic White 👾

8 years

Use admin accounts to pwn any Exchange mailbox as well as pass-the-hash support & a NTLM primer by @_staaldraad

@_staaldraad

@[email protected]

8 years

Some explanation and demo of PtH functionality in Ruler. Also shows a previously undocumented function in action:

0

25

28

1

71

91

@singe

Dominic White 👾

3 years

Our new @OrangeCyberZA Pretoria office is starting to come together.

Tweet media one

10

2

93

@singe

Dominic White 👾

1 year

Hah, @alkalinesec built a BrainFuck interpreter using NSPredicate to demonstrate @CodeColorist ’s point that NSPredicate effectively gives you eval() in Objective C.

Tweet media one

2

13

92

@singe

Dominic White 👾

7 years

Office365's take on "Password1" #TheScourgeContinues

Tweet media one

4

55

87

@singe

Dominic White 👾

3 years

Me: “Don’t write the full PoC now. It’s late and it’s been a long day. Come at it with fresh eyes in the morning.” Also me: *lays awake thinking about the code all night*

7

8

92

@singe

Dominic White 👾

6 years

Weird request, but I’d like to listen. Women, people of colour, gender non-binary & disabled people. Would you mind sharing one thing you wish white men hackers like me would know/stop doing/do at hacker cons? I won’t argue just listen & hope to learn.

30

38

90

@singe

Dominic White 👾

4 years

*rage* Stop blaming South Africa for discovering a COVID-19 variant because we do genome sequencing with a fraction of the budget you do. Discovering it because we invested in the tools and you didn't doesn't mean it started here.

6

20

88

@singe

Dominic White 👾

4 years

Switching *wired* Ethernet speed from 10Mhz to 100Mhz to generate radio signals on 125Mhz as morse code (CW). Includes PoC. Ham radio and side channels oh my.

@ShaunFromLA

ShaunFromLA

4 years

A fun project looking for commercial applications #LetsBuild Modulating RF signals from 10MHz to 125MHz can be used to create 1s and 0s

0

4

21

4

30

84

@singe

Dominic White 👾

6 years

I joke that "ethical hacker" is a stupid name, because it presumes that hacking isn't ethical. Given how often I've had plumbers mess me around, I want to start making the good ones call themselves "ethical plumbers".

4

31

88

@singe

Dominic White 👾

6 years

Our @defcon 26 talk on modern WiFi hacking using rogue devices is up at Links to the code are at Includes a cameo by @_cablethief

Wifi Hacking Tools Collection

Wifi Hacking Tools Collection

2

45

86