#eop — Public Fediverse posts
Live and recent posts from across the Fediverse tagged #eop, aggregated by home.social.
-
Could something be skipping though the "customer interaction" points in your application?
BOT3 from the OWASP Cornucopia Companion illustrates how automation at scale can be used on gambling sites to make bets fast & furiously, skipping past all the checks and balances, warnings, up-selling and regulatory information.
Read the whole scenario at https://cornucopia.owasp.org/edition/companion/BOT3/1.0/en
Details of new release at https://cornucopia.owasp.org/news/20260508-companion-edition
@owasp #appsec #devops #devsecops #threatmodelling #eop #owasp #cornucopia
-
Open source and free. Download print-ready files and play Cornucopia together, browse the cards online, or play games online with remote team members.
If you prefer, printed decks are available to purchase from a vendor as a dual-packaged Website App Edition x Companion Edition combination set:
https://cybersecgames.com/pages/owasp-cornucopia-threat-modeling-collection
@owasp #owasp #cornucopia #eop #stride #threatmodelling #devops #devopsec #appsec #infosec
2/2
-
Open source and free. Download print-ready files and play Cornucopia together, browse the cards online, or play games online with remote team members.
If you prefer, printed decks are available to purchase from a vendor as a dual-packaged Website App Edition x Companion Edition combination set:
https://cybersecgames.com/pages/owasp-cornucopia-threat-modeling-collection
@owasp #owasp #cornucopia #eop #stride #threatmodelling #devops #devopsec #appsec #infosec
2/2
-
Open source and free. Download print-ready files and play Cornucopia together, browse the cards online, or play games online with remote team members.
If you prefer, printed decks are available to purchase from a vendor as a dual-packaged Website App Edition x Companion Edition combination set:
https://cybersecgames.com/pages/owasp-cornucopia-threat-modeling-collection
@owasp #owasp #cornucopia #eop #stride #threatmodelling #devops #devopsec #appsec #infosec
2/2
-
Open source and free. Download print-ready files and play Cornucopia together, browse the cards online, or play games online with remote team members.
If you prefer, printed decks are available to purchase from a vendor as a dual-packaged Website App Edition x Companion Edition combination set:
https://cybersecgames.com/pages/owasp-cornucopia-threat-modeling-collection
@owasp #owasp #cornucopia #eop #stride #threatmodelling #devops #devopsec #appsec #infosec
2/2
-
Open source and free. Download print-ready files and play Cornucopia together, browse the cards online, or play games online with remote team members.
If you prefer, printed decks are available to purchase from a vendor as a dual-packaged Website App Edition x Companion Edition combination set:
https://cybersecgames.com/pages/owasp-cornucopia-threat-modeling-collection
@owasp #owasp #cornucopia #eop #stride #threatmodelling #devops #devopsec #appsec #infosec
2/2
-
The new Companion Deck for OWASP Cornucopia includes six novel suits to assist threat modelling of Agentic AI, Cloud, DevOps, Frontend, LLM and Automation. The suits can be used alone or in combination with suits from either existing Cornucopia decks: the Website App Edition or Mobile App Edition. My main contribution to this is the Automated Threats (BOT) suit.
https://cornucopia.owasp.org/news/20260508-companion-edition
@owasp #owasp #cornucopia #eop #stride #threatmodelling #devops #devopsec #appsec #infosec
1/2
-
The new Companion Deck for OWASP Cornucopia includes six novel suits to assist threat modelling of Agentic AI, Cloud, DevOps, Frontend, LLM and Automation. The suits can be used alone or in combination with suits from either existing Cornucopia decks: the Website App Edition or Mobile App Edition. My main contribution to this is the Automated Threats (BOT) suit.
https://cornucopia.owasp.org/news/20260508-companion-edition
@owasp #owasp #cornucopia #eop #stride #threatmodelling #devops #devopsec #appsec #infosec
1/2
-
The new Companion Deck for OWASP Cornucopia includes six novel suits to assist threat modelling of Agentic AI, Cloud, DevOps, Frontend, LLM and Automation. The suits can be used alone or in combination with suits from either existing Cornucopia decks: the Website App Edition or Mobile App Edition. My main contribution to this is the Automated Threats (BOT) suit.
https://cornucopia.owasp.org/news/20260508-companion-edition
@owasp #owasp #cornucopia #eop #stride #threatmodelling #devops #devopsec #appsec #infosec
1/2
-
The new Companion Deck for OWASP Cornucopia includes six novel suits to assist threat modelling of Agentic AI, Cloud, DevOps, Frontend, LLM and Automation. The suits can be used alone or in combination with suits from either existing Cornucopia decks: the Website App Edition or Mobile App Edition. My main contribution to this is the Automated Threats (BOT) suit.
https://cornucopia.owasp.org/news/20260508-companion-edition
@owasp #owasp #cornucopia #eop #stride #threatmodelling #devops #devopsec #appsec #infosec
1/2
-
The new Companion Deck for OWASP Cornucopia includes six novel suits to assist threat modelling of Agentic AI, Cloud, DevOps, Frontend, LLM and Automation. The suits can be used alone or in combination with suits from either existing Cornucopia decks: the Website App Edition or Mobile App Edition. My main contribution to this is the Automated Threats (BOT) suit.
https://cornucopia.owasp.org/news/20260508-companion-edition
@owasp #owasp #cornucopia #eop #stride #threatmodelling #devops #devopsec #appsec #infosec
1/2
-
In other news, #Trump has bullied various #LawFirms into promising millions of dollars of free services and at least four firms said no, and won in Federal District Court.
> Trump’s only Big Law victories so far have come outside the courtroom. Nine top law firms ... reached agreements with Trump to provide at least $940 million worth of pro bono services collectively to avoid executive orders.
Last Tuesday, a day after saying in Appellate Court that they planned to abandon their appeal, Trump's DOJ reversed course.
https://www.courtlistener.com/docket/70694462/perkins-coie-llp-v-doj/
> The administration told a court on Monday that it was abandoning its defense of executive orders targeting the firms. But on Tuesday, the Justice Department abruptly changed its position.
> The move amounted to a dizzying turnabout in one of President Trump’s most audacious — and, many legal experts said, unconstitutional — attempts at subduing potentially powerful adversaries. It created new uncertainty in a legal profession already roiled by the orders, after some of the country’s biggest law firms thought they had put to rest a key part of the president’s retribution campaign less than 24 hours before.
So on Friday, the DOJ is back in court with 97 pages in their opening brief in the appeal.
#PerkinsCoie LLP v. #DOJ (25-5241, Court of Appeals, DC Circuit, 2026-03-06 Brief for Appellants, 97 pages)
(consolidating Jenner & Block LLP v. DOJ, Wilmer Cutler Pickering Hale & Dorr LLP v. #ExecutiveOfficeOfThePresident, and #SusmanGodfrey LLP v. #EOP ) -
If you are wondering what topics could happen at @OSCo , here one possibility.
I will bring a bunch of #cybersecurity themed games.
Including Elevation of Privilege (#EoP), various adaptations like #Cornucopia, Cyber Threat Defender (#CTD), #BackdoorsAndBreaches, and many more.
If you are interested in trying them out, registration for #osco25 is still open.
If you know other games, bring them (or let me know 😁)
-
I never imagined that creating a crossword would be so challenging. I made this one for my students. The words to solve it are cooking techniques.
#ELT #EFL #ESOL #TESOL #ESP #EOP #CLIL #Crossword #CookingMethods #CookingTechniques #Cooking
-
4/4 Ja minä olen äänestänyt vihreitä ja vassareita. Ja siis #SDP:tta viime eduskuntavaaleissa. Ja tulen äänestämäänkin niin kauan, kun #sinimustahallitus on uhkana. Sitten kun ei ole, taidan alkaa äänestää #EOP:tta.
Ja systeriä taas ei voisi #politiikka vähempää kiinnostaa, eikä hän ysäriltä asti ulkosuomalaisena pahemmin ole äänestänytkään.
-
Yhtään vaalitenttiä en ole katsonut, enkä katso. Sitä populistista poliittista teatteria ei jaxa.
Ennen wanhaan sitä katsoi vielä sentäs pienpuoluetentin huumorielementtien takia, mutta viime vuosina sakeuskerroin on kasvanut niin korkeaksi, että ei pysty. Mikä on harmi, kert on siellä joku (lue #EOP) jolla on järkeviä ajatuksia ja tavoitteita.
#vaalitentti #vaalitentit #politiikka #pienpuoluetentti #pienpuolueet #pienpuolue #aluevaalit #kuntavaalit #yhteiskunta
-
3/3 En esim. enää tokko tule osallistumaan #Elokapina n miekkareihin, koska en voi luottaa, tapahtuuko siellä #ilkivalta a, jota en hyväksy.
Tämä kaikki ajaa mua myös entistä enemmän sille kannalle, että sitten, kun ei enää ole pakko äänestää #SDP:tta, että päästään eroon #sinimustahallitus ja sen muodostumisen riskistä, äänestänen #EOP:tta, joka selvästi tuomitsee edes sen väkivallan. Voi paremmin luottaa siihen, ettei puolueen kannattajissa / jäsenissä / aktiiveissa ole väkivallan siunaajia.
-
Akamai researchers discovered a new privilege escalation technique affecting Active Directory (AD) environments that leverages the DHCP administrators group. In cases where the DHCP server role is installed on a Domain Controller (DC), this could enable them to gain domain admin privileges. The technique is based on abuse of legitimate features and doesn’t rely on any vulnerability. Therefore, a fix for it doesn’t exist. No CVE ID. This EoP technique could also be used to create a stealthy domain persistence mechanism. 🔗 https://www.akamai.com/blog/security-research/2024/feb/abusing-dhcp-administrators-group-for-privilege-escalation-in-windows-domains
#privilegeescalation #activedirectory #vulnerability #domaincontroller #EoP #persistence