Arrigo Triulzi

@cynicalsecurity

IT Security, cynically aged. Maths. Some nukes. Four languages. Longing for Symbolics and Connection Machines. Keeper of Ancient Computing Lore. Ⓐ

Haunting microcode
alchemistowl.org/arrigo
Joined September 2013
496 Photos and videos Photos and videos

Tweets

You blocked @cynicalsecurity

Are you sure you want to view these Tweets? Viewing Tweets won't unblock @cynicalsecurity

  1. Pinned Tweet
    10 Feb 2016

    New security mailing list - “Cabal” - no marketing, no FUD, no cyber subscription requires approval:

    9 replies 36 retweets 80 likes
    Undo
  2. Retweeted
    6 hours ago
    Replying to

    Chrome - all your browsing history and TLS

    2 likes
    Undo
  3. Retweeted
    6 hours ago

    ok, recruiting engineers for a new crypto exchange platform, for which I am advisor, please RT and if interested contact me at jpa@pm.me :-)

    4 replies 18 retweets 16 likes
    Undo
  4. Retweeted
    10 hours ago

    Our LETTUCE sprouts are ELF not E.Coli.

    1 retweet 2 likes
    Undo
  5. Retweeted
    15 hours ago

    Do I know any experienced and highly technical Security Operations people who would be interested in a 100% remote job?

    3 replies 11 retweets 1 like
    Undo
  6. Retweeted
    20 hours ago

    Final drafts of the Second Book of PoC||GTFO have been delivered to , containing all the articles from PoC||GTFO 9, 10, 11, 12, and 13. Look for it this summer wherever fine books are sold, and write plenty of notes in the margins.

    14 replies 127 retweets 309 likes
    Undo
  7. Retweeted
    20 hours ago
    Replying to

    iPXE is great. Been using it for years for fast build&deploy/test cycles. It can also chainload configs via http and validate signatures etc. Also, Genode has ported NIC drivers from iPXE and uses them as components.

    1 retweet 3 likes
    Undo
  8. Retweeted
    24 hours ago

    The calm before the storm. starting on Monday. April 23-29, 2018

    5 retweets 11 likes
    Undo
  9. 22 hours ago

    The beautiful diversity of the Internet is being turned into an oligarchy of a few services: • Gmail - all your email • Google - all your searches • Google - your DNS¹ • “clouds” - all your data What is your DR plan should Google pop? __ ¹ yes, sure, also the other two.

    6 replies 30 retweets 32 likes
    Undo
  10. 22 hours ago

    Look folks, Google does not want you chatting between you, even less so in a federated environment. Will you please use email as IM (assuming both on Gmail) and ensure best coverage for their ad-planning ML stuff.

    3 retweets 6 likes
    Undo
  11. Retweeted
    24 hours ago

    Turing award winners Hennessy & Patterson predict a new golden era of computer architectures.

    7 retweets 18 likes
    Undo
  12. Retweeted
    24 hours ago

    UPDATE: I have been informed that firmware will go out of its way to initialize Thunderbolt alternate mode device during boot and run Option ROMs from it (in ring 0, naturally) so now I think it should just be all burned to ground instead

    3 replies 10 retweets 57 likes
    Show this thread
    Show this thread
    Undo
  13. Apr 20

    Forse, con un piccolo sforzo, la Juventus potrebbe pagare un arbitro per aiutare Mattarella?

    1 retweet
    Undo
  14. Apr 20

    D. Seyler et al., “Identifying Compromised Accounts on Social Media Using Statistical Text Analysis”

    1 reply 2 likes
    Undo
  15. Apr 20

    S. Raponi, “A spark is enough in a straw world: a study of websites password management in the wild"

    2 likes
    Undo
  16. Apr 19

    M. Conti et al., “On the Economic Significance of Ransomware Campaigns: A Bitcoin Transactions Perspective” [rev]

    Undo
  17. Retweeted
    Apr 19

    Multics! On the Internet! Accessible via SSH!

    There's a public Multics installation you can use and (standby for me being extremely on my bullshit) it runs emacs:
    12 retweets 21 likes
    Undo
  18. Retweeted
    Apr 19

    ANN: Tutorial on Formal Spec of Instruction Set Architecture, at RISC-V Workshop, May 7, Barcelona

    1 reply 5 retweets 10 likes
    Undo
  19. Retweeted
    Apr 18

    As of today, the software stack running on ARM processors is carrying real traffic.

    11 replies 102 retweets 301 likes
    Undo
  20. Retweeted
    Apr 19

    someone made a turing-complete extension of JSON cursed language

    17 replies 28 retweets 84 likes
    Undo
  21. Retweeted
    Apr 18
    Replying to

    Yeah and lots of the OpenBSD code is written in C and has a quite amazing track record when it comes to security. Also, if you use OpenSSH (or tmux or OpenNTPD or OpenBGPD or OpenSMTPD, etc) don’t hesitate to give back; 🤭

    1 reply 4 retweets 8 likes
    Undo

@cynicalsecurity hasn't Tweeted yet.

Loading seems to be taking a while.

Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.

    You may also like

    ·