MITRE ATT&CK has become very popular in cybersecurity over the the last few years, with most vendors rushing to support MITRE’s Tactics, Techniques, and Procedures (TTPs) and ATT&CK Navigator. MITRE even has the MITRE ATT&CK Defender (MAD) certification to learn in-depth knowledge of the framework. In fact I am an active holder of the MAD certification. With all of the…
It’s a constant across the Internet: if it’s accessible, it will be attacked. And of course Rails is a pretty well known technology at this point so bots are very easily able to create accounts. I ran into this with Inexpire but I didn’t want users to have to confirm their email and go through that kind of friction during…
To-do list… with prerequisites. Way back in 2021, I started a project I called Inexpire. This was meant to keep track of food and supplies we had stocked up on during the pandemic, to make sure things did not expire before we had a chance to use them. The app took on many iterations since then, including a brief foray…