Hal Pomeranz @hal_pomeranz

I am retiring this social media account. Find me as @hal_pomeranz@infosec.exchange

 Orlando, FL
deer-run.com/~hal/
Joined November 2008
  • Tweets 19,311
  • Following 237
  • Followers 13,672
228 Photos and videos
Filter
Exclude
Time range
-
Near
Load newest
Replying to @competentgirl
@competentgirl Sorry to hear that. Hope everything turns out OK.
Yes I did have chicken tikka masala, brussels sprouts, and macaroni and cheese for dinner. I'm complicated like that.
2
For those who missed it this weekend: Some further thoughts on the Rassokhin/Oleksyuk TDSS botnet writeup: plus.google.com/u/0/10526455…
@keydet89 The article does tell you what hooked function to look for. That at means you could find the malware w/ memory analysis.
Your best friends are the ones who know you well enough to ask you the questions that are difficult for you to answer.
1
1
Replying to @competentgirl
@competentgirl Baby needed a tooth extraction, Dorian's got some sort of bladder thing, and Socks is losing weight rapidly. Typical mess.
1
2-day vet total: $1300. Hey, it's still cheaper than having kids...
4
Is it me, or do others agree that @girlunallocated's tag line should end "... Adores alliteration."?
1
1
Uncomfortable hotel desk chair is uncomfortable. I invoke the power of Laptop to work wherever I like!
1
Replying to @dckovar
@dckovar There's always at least one of you in class. Instructor often brings copy of the DVD on a USB stick-- did you ask @edskoudis?
1
Interesting. Qualifying for my frequent flyer status this year based on segments flown, not miles. All those short hops from the Midwest.
Replying to @DAVNADS
@DAVNADS @jerod I pack for 8-10 days-- that gives me enough to get through 1 week and get my laundry done for the next week.
Some further thoughts on the Rassokhin/Oleksyuk TDSS botnet writeup: plus.google.com/u/0/10526455…
Replying to @attrc
Want to thank @attrc @imhlv2 @gleeda for all their work on the Volatility Linux plugins. Looking good folks!
2
1
2
Replying to @randomuserid
@randomuserid @dckovar That exemption exists for Wiretap Act/ECPA, but not USC 1030 AFAIK
Replying to @randomuserid
@randomuserid @dckovar They could, but they'd have to show up in US court. Doubtless there would be Law Enforcement waiting for them.
1
Replying to @CdtDelta
@CdtDelta @dckovar Actually, the researchers are most likely Russian, but flying the flag of Esage Labs, a Hong Kong based company.
1
Replying to @randomuserid
@randomuserid @dckovar "Protected computer" as interpreted by US courts has been any Internet connected device, even if victim is criminal.
1
Replying to @dckovar
@dckovar "Unauthorized access to protected computer"-- USC 1030 is the "Computer Fraud and Abuse Act"
3
Replying to @ax330d
@ax330d Russian researchers posting under Esage Labs banner. Esage's number comes back to Hong Kong. That's all I looked at (not my case).
Load more