Why write multi-line shell scripts to manage Kubernetes when you can use Cypher-inspired queries?

Cyphernetes simplifies operations like deleting non-running pods:
```cypher
MATCH (p:Pod)
WHERE p.status.phase != "Running"
DELETE p;
```
Readable, relational, and efficient. #Kubernetes #DevOps

Project link on #GitHub https://github.com/AvitalTamir/cyphernetes

#Infosec #Cybersecurity #Software #Technology #News #CTF #Cybersecuritycareer #hacking #redteam #blueteam #purpleteam #tips #opensource #cloudsecurity

—
P.S. Found this helpful? Tap Follow for more cybersecurity tips and insights! I share weekly content for professionals and people who want to get into cyber. Happy hacking

Wondering how to run covert web investigations securely?

Open vBrowser (OvB) is a containerized browser platform tailored for cybersecurity pros. It’s tested on Linux (amd64), and provides anonymity while accessing the deep or dark web. Perfect for SOC teams lacking sandbox tools. #CyberSecurity #Linux

Project link on #GitHub https://github.com/fish-not-phish/open-vbrowser

#Infosec #Cybersecurity #Software #Technology #News #CTF #Cybersecuritycareer #hacking #redteam #blueteam #purpleteam #tips #opensource #cloudsecurity

—
P.S. Found this helpful? Tap Follow for more cybersecurity tips and insights! I share weekly content for professionals and people who want to get into cyber. Happy hacking

New Open-Source Tool Spotlight

TerraSchema converts Terraform `.tf` files into JSON Schema (Draft-07) for variable validation. It handles types, defaults, and validation rules directly, making `.tfvars.json` file generation seamless. Install via `go` or binaries. #Terraform #JSONSchema

Project link on #GitHub https://github.com/HewlettPackard/terraschema

#Infosec #Cybersecurity #Software #Technology #News #CTF #Cybersecuritycareer #hacking #redteam #blueteam #purpleteam #tips #opensource #cloudsecurity

—
P.S. Found this helpful? Tap Follow for more cybersecurity tips and insights! I share weekly content for professionals and people who want to get into cyber. Happy hacking

All the other modules for the Orange Belt are done, and now to the part that really got me into pwn.college: It's pwn time!

New Open-Source Tool Spotlight

The `awscurl` tool simplifies making signed AWS API requests directly from your terminal. It combines cURL with AWS Signature Version 4, so you can interact with AWS services securely without manually signing headers. #AWS #DevOps

Project link on #GitHub https://github.com/okigan/awscurl

#Infosec #Cybersecurity #Software #Technology #News #CTF #Cybersecuritycareer #hacking #redteam #blueteam #purpleteam #tips #opensource #cloudsecurity

—
P.S. Found this helpful? Tap Follow for more cybersecurity tips and insights! I share weekly content for professionals and people who want to get into cyber. Happy hacking

Our Windows CTF is coming to Nullcon in Berlin, Sept 4-5 https://github.com/eshard/TTA-CTF

Play for a chance to win a Binary Ninja license or a Flipper Zero.

Mastered pwn.college's Orange Belt "Reverse Engineering" module - whew! Things learned include disassembling & decompiling with x86 binaries, analysing, parsing and generating application logic, patching data and code in binaries.

New Open-Source Tool Spotlight

BlackCat is a PowerShell module tailored for analyzing Microsoft Azure configurations. It detects potential security vulnerabilities while adhering to best practices. A vital tool for Azure security audits. #Azure #PowerShell

Project link on #GitHub https://github.com/azurekid/blackcat

#Infosec #Cybersecurity #Software #Technology #News #CTF #Cybersecuritycareer #hacking #redteam #blueteam #purpleteam #tips #opensource #cloudsecurity

—
P.S. Found this helpful? Tap Follow for more cybersecurity tips and insights! I share weekly content for professionals and people who want to get into cyber. Happy hacking

My biggest surprise at #defcon33 : in a head-to-head LiveCTF match, one player’s AI bot beat _both_ humans to the punch.

I was commentating the match & was super confused because I could see the player had only just begun their solve script: https://www.youtube.com/live/TYn38VfmDRU?si=GLDRin_TN7naMl4Z&t=15180

The player had the bot running in the background and didn’t notice it submitted a correct solution.

The craziest part: the bot solved at least two other challenges faster than the player.

This player ended up winning the whole thing, clinching the finals without the bot's help.

Granted:
- LiveCTF challenges are designed to be “easy” for top CTF players, solved in 10-30 minutes
- LiveCTF’s format is straightforward and didn’t change since last year, and thus easily automated
- The bot was built by a world-class CTF player w/ experience building AI tools

But:
- These were non-trivial challenges that required synthesis of multiple concepts (PNG format, internal structure offsets, shellcode)
- The player provided almost no input at all, other than the challenge binary and presumably info on the LiveCTF format & challenge category

As the organizers of LiveCTF, we allowed for this possibility as an open challenge, but we were all surprised by this.

Perhaps a small turning point, but it marks a change in #CTF. Whether by policy or technical solutions, organizers will need to handle AI solvers.

New Open-Source Tool Spotlight

KubeIP v2 takes node-level public IP management in Kubernetes to the next level. By supporting GKE, EKS, and OCI, it assigns static public IPs to nodes where necessary (e.g., for gaming or IP whitelisting). Transitioning from a controller to a DaemonSet improves reliability and flexibility. #Kubernetes #CloudNetworking

Project link on #GitHub https://github.com/doitintl/kubeip

#Infosec #Cybersecurity #Software #Technology #News #CTF #Cybersecuritycareer #hacking #redteam #blueteam #purpleteam #tips #opensource #cloudsecurity

—
P.S. Found this helpful? Tap Follow for more cybersecurity tips and insights! I share weekly content for professionals and people who want to get into cyber. Happy hacking

#why2025 #CTF is over - our village took 5th place!

Welcome to Day 3 at AppSec Village – the final day at @defcon 33!

We’re closing out with:

FREE Hacker Fuel
Fix the Flag Wargame (10:00–11:45)
Live talks on CVEs, chained exploits, and breaking bloatware
Spotter Arsenal demo & AppSec in the Shadows workshop
POD games & vulnerability hunts
CTF Award Ceremony at 11:50am - don’t miss it!

More details: https://www.appsecvillage.com/events/dc-2025

Let’s go!

Cat The Flag - have you seen this cat?!

Forensik mal anders beim "What Hackers Yearn" CTF

Container Challenge Champions!

Big congratulations to Enzo “Paniq” Genovese and Spencer Beer — our Container Challenge CTF winners at the Maritime Hacking Village during DEF CON 33!

They cracked codes, navigated our pirate-themed puzzles, and mastered the Digital Blockade to claim victory.

Thanks to everyone who stepped up to the challenge, and to our winners for proving they’ve got what it takes to rule the high (cyber) seas.

@defcon #DEFCON33 #MHV #CTF #DEFCONVillages

Binary Reverse Engineering... da denkt man, man hat mit go- und rust-binaries alles gesehen... und dann kommt cobol daher und sagt: hold my beer!

New Open-Source Tool Spotlight

GitHub repo alert: Santiago-Labs' Go implementation for OCSF (Open Cybersecurity Schema Framework) simplifies standardized event logging. Critical for improving threat detection and interoperability.

#Cybersecurity #DevOps

Project link on #GitHub https://github.com/Santiago-Labs/go-ocsf

#Infosec #Cybersecurity #Software #Technology #News #CTF #Cybersecuritycareer #hacking #redteam #blueteam #purpleteam #tips #opensource #cloudsecurity

—
P.S. Found this helpful? Tap Follow for more cybersecurity tips and insights! I share weekly content for professionals and people who want to get into cyber. Happy hacking

Day 1 is live!! AppSec Village at @defcon 33 is open! Workshops, talks, CTF, coffee, and more all day.

See what’s happening now:
https://www.appsecvillage.com/events/dc-2025

10am–6pm | LVCC, Level 1, West Hall 2, Zone 604

New Open-Source Tool Spotlight

The OpenPubKey SSH project aims at enhancing SSH security by using a distributed PKI to authenticate public keys through DNSSEC and public repositories. It reduces reliance on centralized authorities like CA-based PKIs. A modern approach to securing SSH connections. #CyberSecurity #OpenSource

Project link on #GitHub https://github.com/openpubkey/opkssh

#Infosec #Cybersecurity #Software #Technology #News #CTF #Cybersecuritycareer #hacking #redteam #blueteam #purpleteam #tips #opensource #cloudsecurity

—
P.S. Found this helpful? Tap Follow for more cybersecurity tips and insights! I share weekly content for professionals and people who want to get into cyber. Happy hacking