Mark Manning
@antitree.com
Process isolationist, k8s hacker, ᴎo-prem pusher, syscall denier, container liberator
🔸Chainguard - Product Security
🔸Rochester 2600, IOIOIO Security
🔸Former: Snowflake, NCC Group, Hackerspace starter, BSidesROC Founder
🔸Chainguard - Product Security
🔸Rochester 2600, IOIOIO Security
🔸Former: Snowflake, NCC Group, Hackerspace starter, BSidesROC Founder
Shout out to the poor engineers at Anthropic that have to support the launch of a half dozen new product features announced today.
I've seen this movie before. Hackers with free time + under reviewed features...🍿
I've seen this movie before. Hackers with free time + under reviewed features...🍿
December 24, 2025 at 12:17 AM
Shout out to the poor engineers at Anthropic that have to support the launch of a half dozen new product features announced today.
I've seen this movie before. Hackers with free time + under reviewed features...🍿
I've seen this movie before. Hackers with free time + under reviewed features...🍿
Does anyone else in snow country regularly exchange pictures of snow with friends and families to show how much in their yard?
Do they have a name? Snow-fies? Snow-tographs?
This is what we need to be discussing!
Do they have a name? Snow-fies? Snow-tographs?
This is what we need to be discussing!
December 23, 2025 at 4:30 PM
Does anyone else in snow country regularly exchange pictures of snow with friends and families to show how much in their yard?
Do they have a name? Snow-fies? Snow-tographs?
This is what we need to be discussing!
Do they have a name? Snow-fies? Snow-tographs?
This is what we need to be discussing!
All the AI in the world and Google's cameras still think snow is someone walking
December 11, 2025 at 2:17 AM
All the AI in the world and Google's cameras still think snow is someone walking
lInKsTrAiN | Interface Selection
Snark.rochester2600.com
December 6, 2025 at 12:14 AM
Anyone complaining that genAI image used as page filler are inaccurate or cringe, should be shown the Microsoft Office clip art gallery from the early 2000's
November 26, 2025 at 9:45 PM
Anyone complaining that genAI image used as page filler are inaccurate or cringe, should be shown the Microsoft Office clip art gallery from the early 2000's
I'm a sucker for books that support my belief that we're all doing infosec poorly or just for the sake of infosec. This has been an interesting read so far
November 26, 2025 at 7:19 PM
I'm a sucker for books that support my belief that we're all doing infosec poorly or just for the sake of infosec. This has been an interesting read so far
Uh oh. Check your GCP Cloud Run jobs.
November 21, 2025 at 10:09 PM
Uh oh. Check your GCP Cloud Run jobs.
Districtcon tickets acquired
November 16, 2025 at 5:02 PM
Districtcon tickets acquired
Reposted by Mark Manning
I saw a tragically AI-generated version of this poster, so I have recreated a 100% human-made version for all your protest sign needs.
October 18, 2025 at 4:00 PM
I saw a tragically AI-generated version of this poster, so I have recreated a 100% human-made version for all your protest sign needs.
Serious question: how do people buy cars without spending weeks at it? Do you roll into dealerships and just yeet the cash at them?
October 13, 2025 at 7:26 PM
Serious question: how do people buy cars without spending weeks at it? Do you roll into dealerships and just yeet the cash at them?
Took me 3 hours to finally agree that kubernetes will do anything for Node Autoscaling based on available resources ... But it won't do THAT.
October 10, 2025 at 5:09 AM
Took me 3 hours to finally agree that kubernetes will do anything for Node Autoscaling based on available resources ... But it won't do THAT.
This was 2600 meeting last night. It's getting overwhelming when you look closely
October 4, 2025 at 4:40 PM
This was 2600 meeting last night. It's getting overwhelming when you look closely
I have ChatGPT instrumenting Claude so I can failover when it hits its rate limits. And I feel like that's what you're _supposed_ to do.
2025 is wild.
2025 is wild.
September 28, 2025 at 4:11 AM
I have ChatGPT instrumenting Claude so I can failover when it hits its rate limits. And I feel like that's what you're _supposed_ to do.
2025 is wild.
2025 is wild.
Reposted by Mark Manning
Very late on getting this video out the door, but a teeny weeny showcase of the recent Docker for Desktop on Windows & MacOS container escape, CVE-2025-9074 -- proof of concept was included so a simple demo of arbitrary file write & file read on the host: youtu.be/dTqxNc1MVLE
September 3, 2025 at 1:05 PM
Very late on getting this video out the door, but a teeny weeny showcase of the recent Docker for Desktop on Windows & MacOS container escape, CVE-2025-9074 -- proof of concept was included so a simple demo of arbitrary file write & file read on the host: youtu.be/dTqxNc1MVLE
I'm pretty interested in this. Any else going?
queencitycon.org
queencitycon.org
Queen City Conference - Home
Queen City Conference is a 3 day cyber security conference that is held in Cincinnati Ohio between November 7th - November 9th
queencitycon.org
September 8, 2025 at 12:35 PM
I'm pretty interested in this. Any else going?
queencitycon.org
queencitycon.org
I keep looking at Syd sandbox and I can't help but think it's actually implemented everY feature I've wanted... And now it's in the other side like yeah but should we?
crates.io/crates/syd
crates.io/crates/syd
crates.io: Rust Package Registry
crates.io
September 1, 2025 at 4:04 AM
I keep looking at Syd sandbox and I can't help but think it's actually implemented everY feature I've wanted... And now it's in the other side like yeah but should we?
crates.io/crates/syd
crates.io/crates/syd
An answer to everyone's question: "What if a Linux syscall was an anthropomorphic action figure?"
August 24, 2025 at 8:55 PM
An answer to everyone's question: "What if a Linux syscall was an anthropomorphic action figure?"
Here's a writeup for a tool I released at #DEFCON Cloud Village called "pilreg". It also might help if you're playing @neutrino.bsky.social's Kubernetes CTF.
Thanks to @jon.dag.dev for teaching me about whiteout files which this tool hunts for.
www.antitree.com/2025/08/defc...
Thanks to @jon.dag.dev for teaching me about whiteout files which this tool hunts for.
www.antitree.com/2025/08/defc...
DEFCON Tool Release: Registry Pillage 2.0
www.antitree.com
August 10, 2025 at 6:39 PM
Here's a writeup for a tool I released at #DEFCON Cloud Village called "pilreg". It also might help if you're playing @neutrino.bsky.social's Kubernetes CTF.
Thanks to @jon.dag.dev for teaching me about whiteout files which this tool hunts for.
www.antitree.com/2025/08/defc...
Thanks to @jon.dag.dev for teaching me about whiteout files which this tool hunts for.
www.antitree.com/2025/08/defc...
Catching @bouncyhat.bsky.social 's talk in track 4. Pretty excited
August 8, 2025 at 6:20 PM
Catching @bouncyhat.bsky.social 's talk in track 4. Pretty excited
Is @defcon.bsky.social shop pwnd?
DEF CON merch shop shows a default item and no tickets share.google/xhUoAPEPfV77...
DEF CON merch shop shows a default item and no tickets share.google/xhUoAPEPfV77...
DEF CON merchandise shop
DEF CON Merchandise
share.google
August 7, 2025 at 3:19 PM
Is @defcon.bsky.social shop pwnd?
DEF CON merch shop shows a default item and no tickets share.google/xhUoAPEPfV77...
DEF CON merch shop shows a default item and no tickets share.google/xhUoAPEPfV77...
Are you hooked into this yet? Container CTF is pretty awesome.
Come play in one of the two Kubernetes Capture the Flag events we're facilitating at #DEFCON 33!
Fri – Sun : Learning CTF w/ Walkthrough
Saturday: Competitive CTF
First Place Prize (for a team on-site at DEF CON) is a Bambu Labs A1 Mini 3D printer!
containersecurityctf.com
@defcon.bsky.social
Fri – Sun : Learning CTF w/ Walkthrough
Saturday: Competitive CTF
First Place Prize (for a team on-site at DEF CON) is a Bambu Labs A1 Mini 3D printer!
containersecurityctf.com
@defcon.bsky.social
Container Security Capture the Flag
Container Security Capture the Flag
containersecurityctf.com
August 7, 2025 at 12:50 AM
Are you hooked into this yet? Container CTF is pretty awesome.
Trying my best but I'm already exhausted by Vegas and I haven't even left yet.
August 2, 2025 at 2:53 PM
Trying my best but I'm already exhausted by Vegas and I haven't even left yet.
Chainguard let me sneak in a blog post about SLSA and secure build. There's a bunch of really smart people at this company doing cool and hard shit so here's some of it.
www.chainguard.dev/unchained/th...
www.chainguard.dev/unchained/th...
This Shit Is Hard: SLSA L3 and Beyond
Chainguard goes through all the necessary steps to make things SLSA 3 compliant. Get the details on how we do it.
www.chainguard.dev
August 1, 2025 at 2:24 PM
Chainguard let me sneak in a blog post about SLSA and secure build. There's a bunch of really smart people at this company doing cool and hard shit so here's some of it.
www.chainguard.dev/unchained/th...
www.chainguard.dev/unchained/th...