Izar (izar_t on the birdie)
@izar-tarandach.infosec.exchange.ap.brid.gy
Just trying to make some sense of things, really.
Infosec nerd. Threat modeling aficionado. Opinionated kvetcher.
https://threatmodeling.dev
[bridged from https://infosec.exchange/@izar_tarandach on the fediverse by https://fed.brid.gy/ ]
Infosec nerd. Threat modeling aficionado. Opinionated kvetcher.
https://threatmodeling.dev
[bridged from https://infosec.exchange/@izar_tarandach on the fediverse by https://fed.brid.gy/ ]
Privacy time at Threat Modeling Con with @sec_tigger and @Wuytski ! (Check out that definition - ever wondered what a good, modern definition of privacy might be?)
May 31, 2025 at 10:03 AM
Privacy time at Threat Modeling Con with @sec_tigger and @Wuytski ! (Check out that definition - ever wondered what a good, modern definition of privacy might be?)
It took us a long time but it is still a sweet achievement. Just up for ThreatMod Con 25-a, OWASP pytm has reached the milestone of 1k stars on Github!
We're niche, we don't move very fast, but we shine bright. Thanks everyone who has taken a minute to star us up!
We're niche, we don't move very fast, but we shine bright. Thanks everyone who has taken a minute to star us up!
May 30, 2025 at 10:33 PM
It took us a long time but it is still a sweet achievement. Just up for ThreatMod Con 25-a, OWASP pytm has reached the milestone of 1k stars on Github!
We're niche, we don't move very fast, but we shine bright. Thanks everyone who has taken a minute to star us up!
We're niche, we don't move very fast, but we shine bright. Thanks everyone who has taken a minute to star us up!
Is it a faux pas to wish people a happy Data Privacy Day (Jan/28) on social media ?
Also can we call it DPD, create a convoluted process around it and sell training for its proper enjoyment ?
Also can we call it DPD, create a convoluted process around it and sell training for its proper enjoyment ?
January 27, 2025 at 9:53 PM
Is it a faux pas to wish people a happy Data Privacy Day (Jan/28) on social media ?
Also can we call it DPD, create a convoluted process around it and sell training for its proper enjoyment ?
Also can we call it DPD, create a convoluted process around it and sell training for its proper enjoyment ?
Do you, like me, scratch your head and think "SBOMs, what are they good for?" ? If you do, why not join one of the working groups on CycloneDX - now even easier to do by checking out the new site at https://cyclonedx.org !
1/2
1/2
CycloneDX Bill of Materials Standard | CycloneDX
OWASP CycloneDX is a full-stack Bill of Materials (BOM) standard that provides advanced supply chain capabilities for cyber risk reduction. The specification supports Software Bill of Materials (SBOM), Software-as-a-Service Bill of Materials (SaaSBOM), Hardware Bill of Materials (HBOM), Operations Bill of Materials (OBOM), Vulnerability Disclosure Reports (VDR), and Vulnerability Exploitability eXchange (VEX).
cyclonedx.org
January 8, 2025 at 4:22 PM
Do you, like me, scratch your head and think "SBOMs, what are they good for?" ? If you do, why not join one of the working groups on CycloneDX - now even easier to do by checking out the new site at https://cyclonedx.org !
1/2
1/2
2025 is going to be the Year Of The Agent. If it is going to be 007 or 86 remains to be seen.
January 6, 2025 at 8:55 PM
2025 is going to be the Year Of The Agent. If it is going to be 007 or 86 remains to be seen.