Vegas from afar

One of the rules from our Infosec Rockstar video was that even if you can’t attend a con, you should tweet as if you’re there. Well, I kind of messed up on that tweeting part – but despite me not being at Bsides, Blackhat or Defcon this week, I’ve been living vicariously through the tweets of others.
Speaking of the Rockstar video, SpaceRogue bought this to my attention!

//platform.twitter.com/widgets.js

Whoever you people are… STOP!
Throughout the week Pilgrim really captured the essence of being there with tweets and retweets that evoked mixed feelings where I felt like I was missing out, but somewhat glad I was missing out, if you know what I mean.

//platform.twitter.com/widgets.js

From a technical perspective, the social medias were abuzz with Dan Geer’s keynote talk from BlackHat. Which means:
  1. The keynote was really good.
  2. His talk contained perfectly placed twitter-friendly soundbites.
  3. All the ‘noisy’ tweeters attended his talk.
I guess you can read a transcript of the talk and judge for yourself – http://geer.tinho.net/geer.blackhat.6viii14.txt
Finally, the coolest, in a classic old skool anti-hackery-hack thingy was without a doubt, Wesley McGrew’s Pineapple pawnage

//platform.twitter.com/widgets.js

Which, kids is the moral of the story. A lot of cool tools, software, hardware exist to help automate tests by taking the complexity out of it all. But that doesn’t mean you shouldn’t try to understand how it works – or at least recognise the fact that your tool can be manipulated itself to work against you… particularly at a con where most people will know more than you.
Stay secure my friends.