All Good Men

300 Emails? It was 24 hours! I would have never thought as a front line manager of a small team that I could receive as much email as I do. It’s so overwhelming, I’ve taken to putting my Out of Office as “Due to the volume of email, I will be deleting all email received in my absence. Please hold important correspondence til my return on 3 January 2024”! So, how do we communicate to our peers and leaders if they’re also receiving this much email, or multitudes more? I propose a simple solution. A quick to remember and learn writing template for emails born of years of military correspondence, when seconds mattered, and enough time in the corporate world to know that it’s on me to communicate effectively. I originally adapted this from a business correspondence course, bolted on some pieces from the Army, and its served me well through out the years. I don’t quite get a 100% response rate, but it’s in the high 90’s. Take it, modify as it fits your needs and situations a

Ingredients: 1/4 Stick butter 1/2C AP flour 3/4C room temp milk 3 room temp eggs Salt pepper mace nutmeg allspice etc if you want it Blend it or whisk it until homogeneous  Put a castiron in a cold oven at 425°.  Remove when preheat finishes and melt in a 1\4 stick of butter.   Pour in batter.  Top with parm and fresh herbs.  Cook 15m.

This is a living document and may be incomplete. Updated 1DEC2023 Locating Evidences of Execution using Prefetch, Velociraptor, and Zimmerman’s PECmd Prefetch is a common Windows artifact used for determining the first and last incidences of a program being executed. This file is a binary blob stored at $:\Windows\Prefetch and consists of a series of files named APPLICATION-GUID.pf . These files contain the name of the executable, the last n run date time groups a hash of the executable and path, and a list of files accessed by the .exe in the first few seconds of loading. Tools Recommended: Get-ZimmermanTools.ps1 Velocidex/Velociraptor KAPE - note, it’s necessary to provide the vendor with your email to obtain KAPE but it will make your life much much easier. Using Velociraptor to collect forensic artifacts from a Live System Download Velociraptor and from an admin/sudo command prompt/CLI run velociraptor gui A browser will pop up, Accept and Continue when warned ab

CDW investigating ransomware gang claims of data theft (therecord.media) - #Ransomware #ThreatActor - CDW acknowledges breach of a subsidiary of a division of a business area. Threat actors miffed over $1m offer after $80m demand. HTTP/2 ‘Rapid Reset’ zero-day exploited in biggest DDoS yet • The Register - #Research #ThreatActor - Largest ever DDoS…from smallest ever botnet? 20k bots (multitudes smaller than previous botnets) were able to abuse HTTP/2 streaming to request hundreds of assets from a server over a single TCP stream (a feature of HTTP/2) then cancel those request midstream and request a hundred assets again. Which doesn’t count toward the max request limit. The only theoretical limit to this attack is target bandwidth. US Navy sailor admits to selling military secrets to China • The Register - #politics #InsiderThreat - Navy sailor admits to selling information to Chinese handler, for $14.8k. This comes after another Chinese American Navy sailor was arrested in San Di

Here is a non-exhaustive list of possible mitigations to prevent the exploitation of CVE 2023-4863 in the LibWebP library. This library has a heap buffer overflow available across all operating systems, most browsers, an exceptional number of Electron framework applications. This CVE is rated a 10 after previously being rated 8.8. This was due to an original disclosure from Google stating that Chrome was the only effected application. After investigation, it was discovered that all instances of the LibWebP library were vulnerable across all platforms. A similar CVE ( 2023-5217 ) is pending analysis for the VP8 webstream video format (a sister library to libwep.) As working proof-of-concepts are generally available to the public and Google and Apple both acknowledge threat actors and spyware vendors making use of the vulnerability, it is essential that you begin reviewing and patching all business critical applications. Patch Browsers, All of them All major and minor browsers acr

If you long for cool days and hospital Panera food, this soup is for you. Pair with a crusty bread for a fast soup that feeds 6. Ingredients 2 Lg Carrots, grated 1 Lg White Onion, grated 1 Stick Butter 1/4C AP Flour + 1/4C AP Flour as needed 8C Chicken Stock (No/Low Sodium) 3 Broccoli heads, cut into florets and stalks shaved and cubed 8oz White Sharp Cheddar, grated from a block 8oz Yellow Extra Sharp Cheddar, grated from a block 2C Whole Milk Notes : This recipe’s salt content can get out of hand quickly. Season throughout, but consider the saltiness of your cheeses and the sodium content of your broth if not using low/no sodium. No amount of milk is going to unsalt this soup. Additionally, shredded cheese should not be used in this soup. The pre-shredded cheese has a starchy coating which prevents melting and encourages curdling of the soup. Steps In a large dutch oven, melt the stick of butter over high heat and add the carrots and onion. Allow to co