banner
LightNews
mattimustang.com
Matthew Flanagan
@mattimustang.com
94 followers 57 following 12 posts
Director and Principal Cyber Security Consultant @cybliminal.com
Posts Media Videos Starter Packs
Reposted by Matthew Flanagan
bsidescbr.bsky.social
BSides Canberra @bsidescbr.bsky.social · 12d
Lots of DMs asking for BSides Canberra 2025 talks — they’ll be on YouTube in a month+ 🎥 Speakers are reviewing their sessions first, so stay tuned!

👉 youtube.com/@bsidescanbe...
BSides Canberra
youtube.com
1 2
Reposted by Matthew Flanagan
bsidescbr.bsky.social
BSides Canberra @bsidescbr.bsky.social · 12d
Celebrating 10 years of amazing artwork for BSides Canberra! 🎨 Huge thanks to Sydney-based Aussie Glenno for bringing our logos to life. Real artists > AI every time.

www.instagram.com/glennoart?ig...
1 2
mattimustang.com
Matthew Flanagan @mattimustang.com · 17d
Thanks again to @bsidescbr.bsky.social for inviting me to present my research on living off the land on Palo Alto Networks firewalls as well as sharing new tools I’ve developed to creatively misuse 😜 firewall features for credential harvesting and port scanning.
Some great questions too!
3 5
mattimustang.com
Matthew Flanagan @mattimustang.com · 17d
Thanks again to @bsidescbr.bsky.social for inviting me to present my research on living off the land on Palo Alto Networks firewalls as well as sharing new tools I’ve developed to creatively misuse 😜 firewall features for credential harvesting and port scanning.
Some great questions too!
1
Reposted by Matthew Flanagan
bsidescbr.bsky.social
BSides Canberra @bsidescbr.bsky.social · 22d
CTF early registration is now open! 🕹️
Get set up ahead of time so you’re ready to go when the CTF kicks off this Friday at BSides Canberra.

Register here: ctf.sk8boarding.dog
noCTF
ctf.sk8boarding.dog
1 1
mattimustang.com
Matthew Flanagan @mattimustang.com · 26d
Just one week to go until I present the research from my “Panning for Gold: A Hacker’s Guide to Next Generation Firewalls” paper. Come along and listen to it at @bsidescbr.bsky.social if you’d like to up your post-exploitation game or learn how to better defend your environment.
mattimustang.com
Matthew Flanagan @mattimustang.com · Jul 18
I’m incredibly excited to be accepted by @bsidescbr.bsky.social to present my research on Next Gen Firewalls. I can’t wait to get up there for the first time to share it with you all!
bsidescbr.bsky.social
BSides Canberra @bsidescbr.bsky.social · Jul 17
"Panning for Gold - A Hacker's Guide to Next Generation Firewalls"
What happens when a firewall stops being the defence and becomes the foothold?
@mattimustang.com explores real-world tactics for abusing NGFWs: credential theft, mapping, lateral movement.
cfp.bsidescbr.com.au/bsides-canbe...
3 4
Reposted by Matthew Flanagan
campuscodi.risky.biz
Catalin Cimpanu @campuscodi.risky.biz · Jul 20
For the record, Expel silently updated their blog post to replace bypass with downgrade for this attack
campuscodi.risky.biz
Catalin Cimpanu @campuscodi.risky.biz · Jul 18
-New phishing technique bypasses FIDO keys
-Surveillance vendor deploys new SS7 exploit
-South Korea's largest insurance provider gets ransomed
-Europol take down NoName057 servers
-Australia to create a cyber reserves force

Podcast: risky.biz/RBNEWS453/
Newsletter: news.risky.biz/risky-bullet...
1 5 17
Reposted by Matthew Flanagan
bsidescbr.bsky.social
BSides Canberra @bsidescbr.bsky.social · Jul 17
This year at BSidesCbr, both the Main Track and the Off-Main Track will run across all three days.

Main Track brings the big research, big ideas, and big names.
Off-Main features beginner-friendly talks, deep dives, and unexpected gems—streamed to four theatrettes.
2 2
Reposted by Matthew Flanagan
bsidescbr.bsky.social
BSides Canberra @bsidescbr.bsky.social · Jul 17
"Decoding Threat Actors: a Free Tool for Mapping Aliases"
Fancy Bear or Forest Blizzard? Qakbot or Pinkslipbot?
Dave Matthews reveals a free tool to untangle the threat actor name game - linking aliases, malware families & public research.
cfp.bsidescbr.com.au/bsides-canbe...
Decoding Threat Actors: a Free Tool for Mapping Aliases and Taming the Name Game BSides Canberra 2025
Drowning in the chaos of Threat Actor aliases? Fancy Bear or Forest Blizzard? Wicked Panda or BRONZE ATLAS? And malware families? CageyChameleon or Cabbage RAT? Qakbot or Pinkslipbot? In this session...
cfp.bsidescbr.com.au
1 1
Reposted by Matthew Flanagan
bsidescbr.bsky.social
BSides Canberra @bsidescbr.bsky.social · Jul 17
"Ding Dong the EDR is DEAD"
EDR isn't invincible. Ayman Sagy walks through a real-world exploit against Palo Alto Cortex XDR - earning CVE-2024-8690 and a $2K bounty.
See how it was done.
cfp.bsidescbr.com.au/bsides-canbe...
Ding Dong The EDR is DEAD BSides Canberra 2025
Endpoint Detection and Response (EDR) is the watchdog running on your endpoint to detect and respond to threats in real-time. However, like other defenses, it is not a foolproof solution. In this talk...
cfp.bsidescbr.com.au
1 1 1
Reposted by Matthew Flanagan
bsidescbr.bsky.social
BSides Canberra @bsidescbr.bsky.social · Jul 17
"Why Rust is Safe"
Memory safety and C-level performance with no GC or runtime?
Ben Williamson breaks down how Rust’s ownership model delivers safety guarantees at compile time, making it fit for kernels, firmware, and more.
cfp.bsidescbr.com.au/bsides-canbe...
Why Rust is Safe BSides Canberra 2025
C and C++ are awesome / terrible – they let you do whatever you want with pointers, resulting in all the tasty memory corruption vulnerabilities we know and love. Other languages impose a runtime or g...
cfp.bsidescbr.com.au
1 2
Reposted by Matthew Flanagan
bsidescbr.bsky.social
BSides Canberra @bsidescbr.bsky.social · Jul 18
"Reversing Bytecode into Bounties"
Jira and Confluence plugins can hide serious vulns, if you know where to look. Giuliana and Jamal from Atlassian will show you how to decompile, scan, and exploit like a pro.
Whitebox your way to bounties:
cfp.bsidescbr.com.au/bsides-canbe...
Reversing Bytecode into Bounties: Uncovering Vulnerabilities in Jira and Confluence Plugins BSides Canberra 2025
Whitebox assessments are like unlocking the entire game map, and it's totally up to you to decide what’s worth exploring. Understanding how to decompile apps and navigate them will equip you with the ...
cfp.bsidescbr.com.au
1 1
Reposted by Matthew Flanagan
bsidescbr.bsky.social
BSides Canberra @bsidescbr.bsky.social · Jul 18
"Why I am (still) finding secrets in your code"
Despite all the secret scanning tools, sensitive creds are still everywhere. Luke Marshall shares how he's found exposed secrets across ecosystems, and helped secure 40+ orgs.
🔗 cfp.bsidescbr.com.au/bsides-canbe...
Why I am (still) finding secrets in your code BSides Canberra 2025
Despite the widespread availability of secret scanning tools, thousands of sensitive credentials continue to be exposed in popular open source ecosystems, a security blind spot that sparked my curiosi...
cfp.bsidescbr.com.au
1 1
Reposted by Matthew Flanagan
bsidescbr.bsky.social
BSides Canberra @bsidescbr.bsky.social · Jul 18
"Bitsquatting dot gov.au domains"
Ever blamed cosmic rays for DNS weirdness? Matt Belvedere explores a year of bitflip data in .gov.au traffic, digging into real-world bitsquatting and unexpected system-to-system auth.
cfp.bsidescbr.com.au/bsides-canbe...
gov.au
1 1
Reposted by Matthew Flanagan
bsidescbr.bsky.social
BSides Canberra @bsidescbr.bsky.social · Jul 18
"DarkEngine – Researching a Global Phishing Campaign"
nullifysecurity breaks down a large-scale phishing op that compromised 2,350+ WordPress sites via fake CAPTCHA lures.

cfp.bsidescbr.com.au/bsides-canbe...
DarkEngine: Conducting Research into a Highly Orchestrated Phishing Campaign BSides Canberra 2025
In June 2025, CyberCX released a report on a highly orchestrated phishing campaign targeting popular WordPress hosting platform WP Engine, dubbed “DarkEngine”, which led to the compromise of at least ...
cfp.bsidescbr.com.au
1 1
Reposted by Matthew Flanagan
bsidescbr.bsky.social
BSides Canberra @bsidescbr.bsky.social · Jul 18
"Behind the Curtain of Dark Web and Cybercrime Operations"

Join Alexander Wilczek as he reveals insights from a 4-year investigation into how cybercriminals move and launder money - using OSINT, blockchain tools, and strong OPSEC.

cfp.bsidescbr.com.au/bsides-canbe...
Behind the Curtain of Dark Web and Cybercrime Operations BSides Canberra 2025
A four-year investigation into cybercriminal financial operations. Following the money, examining how threat actors generate, transfer, and launder illicit proceeds. Including the operational security...
cfp.bsidescbr.com.au
1 1
mattimustang.com
Matthew Flanagan @mattimustang.com · Jul 18
❤️
mattimustang.com
Matthew Flanagan @mattimustang.com · Jul 18
I’m incredibly excited to be accepted by @bsidescbr.bsky.social to present my research on Next Gen Firewalls. I can’t wait to get up there for the first time to share it with you all!
bsidescbr.bsky.social
BSides Canberra @bsidescbr.bsky.social · Jul 17
"Panning for Gold - A Hacker's Guide to Next Generation Firewalls"
What happens when a firewall stops being the defence and becomes the foothold?
@mattimustang.com explores real-world tactics for abusing NGFWs: credential theft, mapping, lateral movement.
cfp.bsidescbr.com.au/bsides-canbe...
Panning for Gold - A Hacker's Guide to Next Generation Firewalls BSides Canberra 2025
With the increasing incidence of critical vulnerabilities on next generation firewalls, vendors and their customers face significant challenges in keeping up with firmware patches, mitigating exploita...
cfp.bsidescbr.com.au
1 2 3
Reposted by Matthew Flanagan
crikeycon.bsky.social
CrikeyCon @crikeycon.bsky.social · Mar 16
Justin's talk title speaks for itself: “Well well well, if it isn’t the consequences of my own actions” - the time I got in the middle of 100,000 Linux machines and their LVFS firmware updates and then somehow bypassed the fwupd PGP signature checking
2 2
Reposted by Matthew Flanagan
crikeycon.bsky.social
CrikeyCon @crikeycon.bsky.social · Mar 16
Open source sits at the base of the software supply chain. Fraser talks about how critical it is for open source to establish security response teams and infrastructure. Listen to the experiences learned from bootstrapping and leading the Haskell security response team.
2 2
Reposted by Matthew Flanagan
crikeycon.bsky.social
CrikeyCon @crikeycon.bsky.social · Mar 17
We're a week away and we wanted to say another big thank you to our sponsors. This year Cybliminal has joined us as a Silver sponsor! Big thanks to Cybliminal #crikeycon
2 2
Reposted by Matthew Flanagan
crikeycon.bsky.social
CrikeyCon @crikeycon.bsky.social · Mar 14
Come learn with Kelsy how to develop your cyber team as trustworthy within an org, rather than a compliance function, and how increasing levels of perceived legitimacy may allow security teams to further leverage employees as practical and informed resources!
3 4
Reposted by Matthew Flanagan
crikeycon.bsky.social
CrikeyCon @crikeycon.bsky.social · Mar 15
Jumping on stage we have Simbo who will be talking all things SIEM in the talk "SIEM-less security; Panacea or placebo". Join us March 22 to see this talk and more at CrikeyCon.

Get your ticket here: events.humanitix.com/crikeycon-x
CrikeyCon X
Get Tickets on Humanitix - CrikeyCon X hosted by Droppy & The Sleuth. Royal International Convention Centre (Royal ICC), 600 Gregory Terrace, Bowen Hills QLD 4006, Australia. Saturday 22nd March 2025....
events.humanitix.com
3 3
Reposted by Matthew Flanagan
crikeycon.bsky.social
CrikeyCon @crikeycon.bsky.social · Mar 16
We're excited to announce we have Georgia back on stage with us to present 'Hacking Minds not machines: How meetings not malware can compromise your controls'!
2 2
Reposted by Matthew Flanagan
cybliminal.com
cybliminal @cybliminal.com · Mar 14
Hey cyber people, Cybliminal have a ticket to @crikeycon.bsky.social X on 22nd March in Brisbane to giveaway. DM us if you are keen to attend.
2 3