John Carroll

Ghosted.

Exploitation

Ghosted Domains coming to haunt you, one more check for your scanners, vendor assurance, OSINT, Supply chain, Appsec and all the rest of that good stuff.

Read more

Poll-Dancing & Age Verification

Privacy

Poll-Dancing & Age Verification - a critical view of yougov's obvious biased framing of the age verification shit-show

Read more

Juri.

sidemissions

what laws allow what government departments legal access to information on the end of an IP Address, it's called Juri. after Jurisdiction - https://juri.host/

Read more

Sunsetting Domains

InfoSec

What to do when you no longer need a domain

Read more

Amature.

Privacy

The wrong people in the room when the decisions where made to reduce citizen data security.

Read more

Threat Modeling ? Not My Cup of Tea...

InfoSec

Threat Modeling is not everyone's cup of tea, but let's threat model everyone's cup of tea.

Read more

The BYOD Post.

EntSec

BYOD Problem, options.

Read more

Files, Folders & Fun (revisited)

Exploitation

Playing with folder resolution to build a better pretext

Read more

The Cost of Expiration

EntSec

Who needs to know when a domain has expired ? It Depends, and it Deepens.

Read more

File Folding.

Ideas

File Folding is a technique that moves a file into hex, and that hex is broken into folder file names in a fashion that can be reconstructed.

Read more