As a pentester, if I see XML in HTTP I start crying.

Login pages ;D

I had a colleague at work years ago who did his Master’s thesis on network scanning. He ran a PoC in the company’s network and had all the printers print hundreds of pages.

We learned that printers suck and that we should always know our payloads and targets 😁

Check out openvas.

https://github.com/greenbone/openvas-scanner

I use Nessus professionally, they are somewhat similar. I can’t decide which one has the worse user interface.

I’m a big fan of hashcat for this use case myself! I route it through WS, however. I like being on the bleeding edge.

The firewalls are all backdoored too!

Lol. Word unprofessional!

Who is Ian?

Exactly.

The goal is to allow a completely free and open-source deployment of an O365-like infrastructure in order to prevent being tethered to Microsoft, for example. The main use seems to be so that municipalities can set up something cheaply and quickly, without any licensing headaches.

Marketing™️ I guess? :P

But probably because YOU don’t have to fuck around with servers, for you it’s just an upload of a function.

Instead of spinning up a classical server like Apache or IIS for what you need, you just write a single function that you can bind to an endpoint and just host that - the rest is abstracted away from you.

This AI stuff is annoying me. I don’t work in development - I’m a pentester and recently had to work on some scripts with a colleague.

He is a few years my senior and basically completely relies on ChatGPT for simple string matching and splitting in bash. I could not believe my eyes. He got ChatGPT to spit out a command that didn’t work exactly as we needed it to because it was looking for the wrong string. It was a really simple fix but he again had to ask ChatGPT for how to fix it, until I was like “let me do it”.

It’s not that he’s dumb or anything, but I feel like he just grew completely lazy from that and doesn’t even want to think anymore. Later on he was troubleshooting the same script for a few hours until he noticed that ChatGPT output messed up the order of lines and tried to access a variable that was only declared in the next line.

I think ChatGPT and whatever else are really useful tools, but people tend to use them as shortcuts to learning instead of getting things done quicker. That is in everyone’s own responsibility - I just have the hunch that my job will get way more interesting with a new generation of incompetent developers 😁

More like sprinting the sprint!

Since the other people don’t seem too helpful to you, we can gladly setup a meeting and see where it goes :) I don’t have exeprience in all these software like TrueNAS you’re using but I have a lot of experience in a lot of other things, so I’m sure I’ll be able to help!

Check out nuclei or maybe greenbone.

CP was shit and unplayable on consoles at release and more-or-less buggy depending on hardware but fully playable on PC. It did not live up to the grandiose marketing promises but it is a wonderful game for what it is. Interesting world, varied quests/gigs/jobs with interesting decisions to make, super fun weapons, and now a fun skill build mechanics.

Phantom Liberty is peak Cyberpunk, but the game itself is great - at release and now even more. Does not excuse the pathetic release though and deceiving marketing. At least they did something with it.

Option 2, because once you start thinking about the ways your stuff could be stolen (“threat modelling”) you’ll see that realistically it’s the easiest option.

I think they replied to the wrong post - there was another question somewhere about a safe PDF reader.