Bil Corry @bilcorry

CISO at @sardineai. Treasurer of @OWASP Board of Directors. (he/him) qatta' mIghtaHghach.

 Phoenix, AZ
linkedin.com/in/bilcorry/
Joined July 2009
  • Tweets 8,305
  • Following 139
  • Followers 776
Load newest
$35! Super affordable AppSec conference from the comfort of your home.
owasp @owasp
13 Sep 2023
ReadyForAppSec? 🤔 Get your tickets NOW to join the VIRTUAL #OWASP Global #AppSec Singapore training courses and 🎓 LEARN about #hacking modern web apps, #API's, #frontendSecurity, and MORE! 👉 singapore.globalappsec.org/
Replying to @MoiraDonegan @rtraister
While I never met Betty Friedan, she did influence me. I started a student chapter of @NationalNOW in the early 90’s and served as co-president. @alanalda was a north star for how men could be feminists and I participated in Take Back the Night, March for Women’s Lives, etc.
1
Opinion: Browsers are FAR too willing to enter full-screen mode. textslashplain.com/2023/09/1…

Attack Techniques: Fullscreen Abuse

It’s extremely difficult to prevent attacks when there are no trustworthy pixels on the screen, especially if a user doesn’t realize that none of what they’re seeing should be tru…

textslashplain.com
1
16
2
37
Also the escalator was broken, and there are no stairs (does the UK not have a fire code for stairs?), so we queued a long while for the two elevators. On a positive note, their crazy system of buses, escalators, long walkways, security, etc were mostly efficient.
I love LHR, long bus rides crammed full of people, security screening of previously screened passengers, prioritizing mall shops over seating, unusually warm indoor temps, just-in-time gate assignments, constant mid-level noise due to giant hall full of people. It’s the best!
1
Bil Corry retweeted
owasp @owasp
9 Sep 2023
🤑DISCOUNTED TICKET PRICES!!! 😱VIRTUAL EVENT?!?! That means you can join us for #OWASP Global #AppSec Singapore!! Take a look at our agenda, speakers, trainers and register today! singapore.globalappsec.org/ See you there 💃
5
7
Proud to work for Sardine! If you want to know more about what we do, listen to this 👇
This Week in Startups
 @twistartups
6 Sep 2023
another amazing episode! this time w/@sardine ceo @soupsranjan financial fraud and hacking are much scarier in the age of generative ai. as much as gen ai empowers good actors, it does the same for bad actors. so, soups is building a platform to counter and prevent them! he breaks down to @Jason the amazing ways in which @sardine tracks and stops fraud:
Facebook comments 🍿
Replying to @RSnake
Bard disagrees.
Favorite Bob Barker moment (from his show in 1980s). A contestant wearing a tube top was jumping up and down in excitement. Bob tells her, "Be careful young lady, I had another contestant wearing a similar top and what popped out wasn't her car keys." nytimes.com/2023/08/26/arts/…

Bob Barker, Longtime Host of ‘The Price Is Right,’ Dies at 99 (Gift Article)

The winner of numerous Emmy Awards, he was almost as well known for his advocacy of animal rights as he was for his half a century as a daytime television fixture.

nytimes.com
Replying to @KingsIsle @Wizard101
Wow, that's some swag! Thanks!
4
Replying to @alfiekohn
Probably not visible, but ask how many books removed from library, which topics are not allowed to be taught. Multiple age groups in class, older kids helping younger kids. PE is cooperative and inclusive. Lunch menu is healthy, not relying on ketchup to be a veg.
Bil Corry retweeted
owasp @owasp
28 Aug 2023
😱my oh my, have you heard the news? #OWASP Global #AppSec Singapore is now VIRTUAL and ticket costs have been reduced. Take a look at our fantastic line up of speakers, 💃ticket costs and networking opportunities whova.com/portal/registratio… #cybersecurity #infosec
2
1
7
@united This is factually wrong for US citizens and US LPRs. Your online check-in system is broken.
Great way to recruit for your open AppSec roles!
owasp @owasp
25 Aug 2023
⚡ Is your company hiring? The #OWASP Career Fairs are an excellent opportunity for companies seeking new talent! Recruiters can showcase their job opportunities and network with potential candidates. owasp.org/events/career_fair #jobfair #hiring #careerfair
When I owned AppSec at PayPal, we used Juice Shop for an internal CTF for our developers. Had the highest engagement and positive feedback out of everything we had ever done.
owasp @owasp
25 Aug 2023
OWASP Spotlight - Project 25 - OWASP Juice Shop youtube.com/--50rE76EeA?feature… @bkimminich @infosecvandana
2
4
Replying to @AmericanAir
It isn't fixed for me. If your site asks for 2FA, I can sign in. If your site doesn't ask for it, I can't sign in.
Replying to @ericlaw
Nothing in devtools. Turns out it works when I have to 2FA into the site (they send an email with a code). If the site does not ask for the 2FA, I can't log in, including Incognito. Not sure why Incognito doesn't always trigger 2FA but it doesn't.
I think it started a month or two ago, I didn't notice because I thought you were just constantly taking your site down.
1
@AmericanAir Not sure what happened, but I can no longer log into your site using Chrome, I get the below screenshot. If I use Incognito mode it works, but that's annoying. Clearing cookies and local storage, plus turning off extensions didn't fix it.
3
Load more