Staff Security Engineer at @gofundme ♥️✨👱🏻♀️
Joined January 2014
- Tweets 1,517
- Following 464
- Followers 4,663
- Likes 2,810
140 Photos and videos
Pinned Tweet
11 Dec 2021
Imagine being frozen 20 years ago and waking up this weekend to find Java is still and thing and it’s even worse than before.
10
23
250
24 Jul 2023
39
3
267
34,833
11 Jun 2023
Another 🔥 video drop from @ippsec, need I say more?
Decided to finally do an OS Rebuild yesterday, will do my best to keep all OS Customizations to an Ansible Playbook, so you can build your own copy of the VM you see in my videos and document the critical pieces via a video series. Here's the first vid:
youtube.com/watch?v=2y68gluY…
2
13
8,294
27 May 2023
Should I start posting more resources about AppSec?
I’m down to start a blog series and GitHub repo if that’s something people would benefit from.
14
9
142
17,965
27 May 2023
This is a gold mine of knowledge for anyone who is in AppSec or wants to be in Appsec.
So many examples of challenges faced in the Modern Application Security Realm and what skillsets to arm yourself with to be impactful.
1
8
28
7,419
23 May 2023
Did infosec wake up and decide to be into praise or have we always been like this? Asking for a friend
9
4
43
13,044
23 May 2023
When someone uses that cursed script™️ you wrote to solve a problem
8
76
10,259
22 May 2023
How to make a Red Teamers day as an AppSec person:
"Hey... so... I found some hashes"
2
15
5,421
22 May 2023
Throwback to 2016 when I was talking about XXE at a conference and someone said it wasn’t a thing because they had never heard of it.
Then it was in the Owasp Top Ten 2017.
As of 2023 there are 879 Mitre CVE’s including the word XXE.
2
21
6,389
21 May 2023
Hi if ur reading this ur a cute and talented infosec professional
Like and subscribe to claim ✨
18
8
213
35,187
20 May 2023
This is so cute 🥰
19 May 2023
i wanted to share the new pins i’m bringing to sjmade—the terminally embarrassed pin! have you ever debugged for hours just to find out that you left off a semicolon? have you ever accidentally committed a log line that outputs “poop”? join the terminally embarrassed club >_<
ALT hand holding a backing card with the text “terminally embarrassed” and “bubblesort.io” backing card holds a pin shaped like a terminal, but with an extra < symbol so that the terminal forms an embarrassed wincing face. the terminal is dark purple and the pin has rose gold edging.
17
3,820
20 May 2023
Nice approach for discovering XSS vulnerabilities (but also can apply in general as a process for bug hunting 🕵️♀️)
18 May 2023
One of my first ever bug bounties was an XSS against a WordPress host. It wasn't anything super special but the process I used to find it is one that has yielded loads of bugs over the years.
Here's how I found it 👇
2
3
2,369
20 May 2023
In some org somewhere:
> r u srs I can’t believe they said you didn’t parameterize the queries you would obviously NEVER
> I didn’t 🤭🫣
> purr as u should queen tf period 👑
5
2,276
19 May 2023
Dope Defcon opportunities for AI interested folks ✨✨
19 May 2023
Hey hacker fam!
The AI Village team are working on an EPIC event this year.
🥷 Talks
👩🔬 Labs
🎨 Art
🏴☠️ CTF
🎧 Music
🐞and a HUGE AI Red Teaming event🐞
We need volunteers! 👇🏼
docs.google.com/forms/d/1VzL…
Oh did I mention free limited edition swag? 😉
@aivillage_dc @defcon
1
1
6
4,402
18 May 2023
Google Bard considers me a “popular cybersecurity expert and meme connoisseur” and that’s all the validation I need.
8
1
41
5,327
5 May 2023
“Aren’t you worried about AI taking over???”
>Me thinking about that time I asked ChatGPT for Spider-Man quotes and it was like “everything the light touches…. Is our kingdom”
1
2
17
3,210
27 Apr 2023
> be me
> every 3 days
> writing flawless code
> wonder why it no work
> running wrong file
1
1
16
3,207