Why Not MITRE TTPs?

MITRE ATT&CK has become very popular in cybersecurity over the the last few years, with most vendors rushing to support MITRE’s Tactics, Techniques, and Procedures (TTPs) and ATT&CK Navigator. MITRE even has the MITRE ATT&CK Defender (MAD) certification to learn in-depth knowledge of the framework. In fact I am an active holder of the MAD certification. With all of the…

Inexpire DevDiary – Spam

It’s a constant across the Internet: if it’s accessible, it will be attacked. And of course Rails is a pretty well known technology at this point so bots are very easily able to create accounts. I ran into this with Inexpire but I didn’t want users to have to confirm their email and go through that kind of friction during…

2024 Grand Rapids Half Marathon

I ran a half marathon! On October 21 2023, I reached my goal of 100lbs lost. The very next day, October 22nd, I started running. I had run a 5K race when I reached 50lbs lost, so my initial goal was to run a 10K to celebrate 100lbs. But it was a long winter and my ambitions are boundless 😉…

Zwift review – not great

Summary: It’s probably not worth it unless you have a $600+ smart trainer. As I’ve mentioned, I’ve picked up running in the last 6 months. It’s been winter, which necessitates time on the treadmill. And I’m expecting this summer to be record heat which will push me to the treadmill even more. I also cross-train on an indoor bike. I…

How to pick between races

You’re looking at the race calendar and you see two 5Ks you really want to run… but they’re on the same day! And there’s a 10K that sounds really interesting the next day! How do you decide which to run? The Problem I actually have this as a real scenario I am facing. I’m looking at two different 5Ks that…

Race Training for 2024

After I lost 50lbs in 2021, I ran a 5k to celebrate my fitness. Now that I’ve lost 100lbs, I planned to run a 10k. But I was enjoying running, so I’ve set my sights on a bigger goal: Amway Riverbank Run (RBR) 25K. Slightly longer than a half marathon. Here’s what I’m doing to prepare for my 2024 running…

I lost 100 pounds 💪

YUUUUP! I’ve always been overweight, I’ve tried half-heartedly to fix this many times over the years but I never really had much success. But in late 2020/early 2021 I decided that was time to change. For good. So I bought a Peloton and started hitting the pedals. 45 minutes 3x per week, with another 90 minute ride on Saturday. I…

HackTheBox – Active Subdomain Enumeration

Some background information, feel free to skip: I’m relatively new to pentesting. I’ve spent my whole career on the blue side, mostly with SIEM technologies. But that’s boring! I want to HACK! So my employer paid for some training and set a goal to finish HackTheBox Bug Bounty course and all TryHackMe modules this year. So I’m documenting my progress,…