Conversation

Notices

Embed this notice
ins0mniak (ins0mniak@majestic12.airforce)'s status on Tuesday, 19-Nov-2024 11:06:05 JST ins0mniak
@NonPlayableClown @p @vic Its abysmal. It's even worse with the infosec dorks. Everyone wants to do "muh cybersecurity" now.

I met a guy in DC that making 6 figures as some kind of bullshit security consultant and the tool didn't have a clue what I was talking about when I started asking questions.

I had a chick say to me one time "coding is for developers you don't need that in security"

I swear all they do around here is sit around at meet-ups (the bar) and talk about the infosec community, whatever that is or shit about getting more women into the field.

meanwhile the Chinese are eating our lunch

In conversation Tuesday, 19-Nov-2024 11:06:05 JST from majestic12.airforce permalink
- Embed this notice
  Fediverse Contractor (bot@seal.cafe)'s status on Tuesday, 19-Nov-2024 11:06:02 JST Fediverse Contractor
  in reply to
  Whats a pentester?
  
  In conversation Tuesday, 19-Nov-2024 11:06:02 JST permalink
- Embed this notice
  vic (vic@seal.cafe)'s status on Tuesday, 19-Nov-2024 11:06:03 JST vic
  in reply to
  @teratology @p @ins0mniak @NonPlayableClown pentesters know how to run Metasploit on Windows XP (MS08-067) from being in a SANS class five years ago and that's about it. Maybe the really super smart ones know how to do Wireshark filters.
  
  In conversation Tuesday, 19-Nov-2024 11:06:03 JST permalink
- Embed this notice
  cipote :bishrexual: (teratology@the.asbestos.cafe)'s status on Tuesday, 19-Nov-2024 11:06:04 JST cipote :bishrexual:
  in reply to
  @ins0mniak @p @NonPlayableClown @vic okay not to contribute to the meme but many people I know working as pentesters don't know shit about coding or scripting 😭
  
  In conversation Tuesday, 19-Nov-2024 11:06:04 JST permalink
- Embed this notice
  djsumdog (djsumdog@djsumdog.com)'s status on Tuesday, 19-Nov-2024 11:10:57 JST djsumdog
  in reply to
  Almost every security team I've had to work with was incompetent, box tickers (for compliance) or some combination of the two. I was offered two security positions and turned them down because I knew they would be shit. They rarely have any developers (one wanted to hire me internally because they desperately needed a developer and wouldn't stop harassing me to apply because I posted something about attending DEFCON in a Slack channel).
  
  In conversation Tuesday, 19-Nov-2024 11:10:57 JST permalink
- Embed this notice
  djsumdog (djsumdog@djsumdog.com)'s status on Tuesday, 19-Nov-2024 11:21:51 JST djsumdog
  in reply to
  AI code assistants are good for wrong answers only. We started piloting a few at work and I gave in and tried some out. Except for really simple stuff (which might save you 2~10 min verse reading the docs), it mostly gets stuff so wrong it's insane.
  
  In conversation Tuesday, 19-Nov-2024 11:21:51 JST permalink
- Embed this notice
  vic (vic@seal.cafe)'s status on Tuesday, 19-Nov-2024 11:21:52 JST vic
  in reply to
  @teratology @djsumdog @p @ins0mniak @NonPlayableClown And there are some manager types who hope that AI code assistants will be the answer, but the new hires are too retarded to even know what questions to ask.
  
  In conversation Tuesday, 19-Nov-2024 11:21:52 JST permalink
- Embed this notice
  cipote :bishrexual: (teratology@the.asbestos.cafe)'s status on Tuesday, 19-Nov-2024 11:21:53 JST cipote :bishrexual:
  in reply to
  @djsumdog @p @ins0mniak @NonPlayableClown @vic
  What baffles me about this is that have any web dev or web application development exp should be a plus so it's concerning they got people in charge that can't even decipher JavaScript 😩
  
  In conversation Tuesday, 19-Nov-2024 11:21:53 JST permalink

Public

Notices

Feeds