Hal Pomeranz @hal_pomeranz

I am retiring this social media account. Find me as @hal_pomeranz@infosec.exchange

 Orlando, FL
deer-run.com/~hal/
Joined November 2008
  • Tweets 19,311
  • Following 237
  • Followers 13,672
228 Photos and videos
Load newest
Remember I said, "Never low-bid sushi!" Well apparently people are low-bidding IR work. Neither is going to have a good outcome.
9
9
1
65
Hal Pomeranz retweeted
Johnny Xmas @J0hnnyXm4s
26 Jan 2022
HEY, I'M HIRING. Do you have way too much infosec experience and get lost talking about the swath of it to anyone who will listen? Have you built workshops and/or given instructional talks and would love to finally get paid for it? COME WORK WITH ME jobs.lever.co/grimm-co/8431a…
2
52
2
91
Hal Pomeranz retweeted
Janis Ozolins
 @OzolinsJanis
14 Jan 2022
4 hidden events in your calendar:
45
816
112
3,611
Hal Pomeranz retweeted
Bojan Zdrnja @bojanz
25 Jan 2022
Exploiting #CVE-2021-4034 (polkit pkexec) is *really* straightforward. While this is "only" local privilege exploitation, it should still be patched ASAP. Here's a working exploit on a fully patched Ubuntu 20.04 installation (before the polkit patch):
5
49
4
136
Interesting product demo and fun SOC challenge at spyderbat.com/defend-the-fla…
1
1
10
There is still time to register for my Linux Forensics class! Virtual training Feb 1-4 (next Tue-Fri), 12:00pm-4:00pm US Eastern time. Hope to see you online! antisyphontraining.com/event…
6
13
Hal Pomeranz retweeted
Andrew Case @attrc
4 Jan 2021
You can also map that socket file descriptor to an actual connection/socket by running (as root): netstat -eepan | grep 2898922 // @hal_pomeranz
Craig Rowland - Agentless Linux Security
 @CraigHRowland
4 Jan 2021
Let's investigate a suspicious Linux process to see what files it has open. Malicious processes often have open files that can lead you onto them. Commands: cd /proc/<PID>/fd ls -al #DFIR
2
10
33
If you don’t care for Meat Loaf and Jim Steinman you should probably not come near my office for a while…
1
4
Hal Pomeranz retweeted
Dan Reilly @danreilly11
21 Jan 2022
RIP Meat Loaf. I was lucky enough to chat with him once about singing, and we ended up talking about the thing he wouldn’t do for love and him losing a bet over whether or not people would get it.
31
594
125
2,039
Are you ready for the lineup of speakers we'll be having at Way West 2022? Check out some of them below! Keynote Speakers: @_r00k_ and Jeremiah Fowler @olafhartong @jwgoerlich @hal_pomeranz Tony Sager @wh33lhouse @ChloeMessdaghi (1/2)
16
2
35
Repeating this for the morning crowd
Hal Pomeranz @hal_pomeranz
19 Jan 2022
I have a small opportunity for somebody who feels qualified to give an expert opinion on enterprise software valuation in the context of an intellectual property infringement case. DM, email, etc and let’s discuss.
3
Hal Pomeranz retweeted
4n6lady
 @4n6lady
20 Jan 2022
For those looking for a mentor, each Monday we try to trend #cybermentoringmonday You can utilize this hash to either look for a mentor, or even look for a mentee. Additionally, I recommend checking out @DojoCyber to see if it's the right fit for you :) cybermentordojo.com/

Cyber Skills Mentoring

It's difficult to know which path to take on your road to success as a Cyber Security Expert. But with a Mentor as your guide you can cut down wasted time and effort and chart a course for success.

cybermentordojo.com
1
14
62
I have a small opportunity for somebody who feels qualified to give an expert opinion on enterprise software valuation in the context of an intellectual property infringement case. DM, email, etc and let’s discuss.
1
1
Fuck it. Looking for work. L2(not so much customer facing)/ entry level sysadmin work. Proficient with Linux/shell scripting, can find my way around aws, basic VMware esxi knowledge but can learn both esxi and aws quick.
4
36
1
40
Hal Pomeranz retweeted
Blue Team Con @BlueTeamCon
18 Jan 2022
The @BlueTeamCon CFP closes in under 14 days (31 Jan at 11:59:59pm CST). Submit your talks today on: - Container Sec - Application Sec - Soft Skills - Threat Hunting - DFIR - Hiring & Talent Acquisition - IoT - Hacking (w/ Defense) - Documentation Visit blueteamcon.com/2022/CFP
3
19
3
34
Hal Pomeranz retweeted
Lesley Carhart @hacks4pancakes
17 Jan 2022
If people tell you you can’t, they’re probably trying to sell you something or overly worried about their own job security. Period. There are all kinds of people in hacking and cybersecurity and nobody should put you, your education, or your upbringing into a box. We need you.
11
46
2
483
Wow, to the few of you who went back and read all six installments of this series today: I salute you, fellow file system nerds!
Hal Pomeranz @hal_pomeranz
13 Jan 2022
A blog post almost four years in the mak^H^H^Hprocrastinating-- getting back to my teardown of XFS file systems! righteousit.wordpress.com/20…
1
2
I'm also releasing the Hexinator/Synalyze It! grammars that I used to produce the colorful hex dumps for the XFS on-disk structures: github.com/halpomeranz/XFS-G…

GitHub - halpomeranz/XFS-Grammars: Hexinator/Synalyze It! grammars for XFS on-disk structures

Hexinator/Synalyze It! grammars for XFS on-disk structures - GitHub - halpomeranz/XFS-Grammars: Hexinator/Synalyze It! grammars for XFS on-disk structures

github.com
1
3
A blog post almost four years in the mak^H^H^Hprocrastinating-- getting back to my teardown of XFS file systems! righteousit.wordpress.com/20…

XFS Part 6 – B+Tree Directories

Look here for earlier posts in this series. Just to see what would happen, I created a directory containing 5000 files. Let’s start with the inode: The number of extents (bytes 76-79) is 0x2A…

righteousit.wordpress.com
2
1
1
3
Never low-bid sushi!
4
1
1
15
Load more