#hack100days : Day 13 : Today was a little weaksauce. Researched kit to bolt onto a Raspberry Pi 3 to make a wifi hacking rig. #getsmart #infosec #wifihacking #cososec

#hack100days : Day 12 : Poked around at JuiceShop again. Worked with a group on derailed on #htb and got user. Don’t have foothold, yet. Got some mentoring on the next step and will work on it tomorrow. #getsmart #infosec #ctf #cososec

@spacesloth "I know they call 'em fingers, but I've never seen 'em fing."

#hack100days : Day 11 : More JuiceShop. Explored business logic. Managed to break the server a couple of times. Error checking and handling is hard. #getsmart #infosec #WebAppPentesting #cososec

#hack100days : Day 10 : Watched a twitch stream of an attack on a #tryhackme box. Lots of malding, lol. Also poked at JuiceShop some more. #getsmart #infosec #cososec

#hack100days : Day 9 : Analysing main.js from juice shop. Finding endpoints on the server to explore and “endpoints” on the local app to explore. Router is a magic word. Need to do more poking and prodding to ascertain what kind of magic word “selector” is. #getsmart #infosec #webapplicationtesting #cososec

#hack100days: Day 8: Spun up Juice Shop and started in. Used ZAP to spider. Found an auth bypass. Found a dir from robots.txt with some goodies. Recalled a hint from PWST to reap the goodies. Need to look at hacking a Keepass file. I'm sure I've seen that in a CTF or three. Need to attack the business logic in the app. Look at API enumeration. Time to kick off a directory brute-force and go to bed. #infosec #webapplicationtesting #getsmart #cososec

#hack100days: Day 7 : Finished sections 8 and 9 of PWST. Next up, hack Juice Shop. #infosec #getsmart #webapplicationtesting #cososec

#hack100days : Day 6 : Finished section 7 of PWST. #infosec #getsmart #cososec

#USWNT wins, 2-1, over Germany. Avoids dropping four in a row. #footie

D'oh! Pugh and Lavelle could have taken #USWNT up by two, but missed out. Bummer, but I like to see it--make opportunities! #footie

Pugh! Pugh! Mallory Pugh take the #USWNT up by one on Germany on a break away. (Kid's got some wheels!) #footie

Great stop by Neaher! Shuts down a 2 on 1. #USWNT gets a goal back by Smith on a set piece! #footie

Ooof. Opportunity missed, but looking much better #USWNT! Keep the pressure on! #footie (Still 1-0, Germany)

Durn. DEU up by one v. #UWNT. Goal by Brand. C'mon, ladies. The ball needs to be spending more time in *their* end! #footie

#hack100days : Day 5 : Took a crack at #hackthebox new release, Forgot. Learned some stuff, so that's good. I'm still slow, but eventually got root. I think some of it was more CTF than real life, but I look forward to seeing the reviews from the old hands. #infosec #getsmart #cososec

@iamwill1w9 If you're using wordpress.com and have the tier that supports plug-ins, there are some plug-ins that support country blocks. Otherwise, firewall or WAF rules are likely the way. Looks like you can get US netblocks here: https://www.nirsoft.net/countryip/us.html (Summarize the smaller blocks up into /8s is probably safe.)

#hack100days : Day 4a : Finished off sections 5 and 6 of PWST. #infosec #WebAppPentesting #cososec

@Gambit_1 England and Germany, for sure! I think we've still got a good team, but they don't seem to be as jelled as Jill's teams were.