@jiwasz.bsky.social
Architect | Cybersecurity | ex-Microsoft | Microsoft MVP
This is my third #BlackHat and #DEFCON. Three years ago DARPA announced the AI #Cybersecurity challenge. $21 million is at stake in prizes and the winner will be announced in a few days at DEFCON.
aicyberchallenge.com/final-compet...
aicyberchallenge.com/final-compet...
Final Competiton – aicyberchallenge.com
aicyberchallenge.com
August 4, 2025 at 2:34 PM
This is my third #BlackHat and #DEFCON. Three years ago DARPA announced the AI #Cybersecurity challenge. $21 million is at stake in prizes and the winner will be announced in a few days at DEFCON.
aicyberchallenge.com/final-compet...
aicyberchallenge.com/final-compet...
I’m a little late in posting this. Was in Seattle for MS Build last week and had an afternoon to spare.
May 29, 2025 at 1:04 AM
I’m a little late in posting this. Was in Seattle for MS Build last week and had an afternoon to spare.
@csharpfritz.com Hey Jeff, thanks for the presentation and chat at the Philly .NET Meet Up. I wanted to follow up with you on JSONPath parsing support in System.Text.Json. Found this Issue: github.com/dotnet/runti...
How can I help push this forward?
How can I help push this forward?
Add JsonPath support to JsonDocument/JsonElement · Issue #31068 · dotnet/runtime
Hi, I'd like to request JsonPath support for querying the JsonDocument/JsonElement classes. JsonPath provides similar capability to XPath (and even Sql) in that it allows queries to be performed ag...
github.com
December 12, 2024 at 1:33 PM
@csharpfritz.com Hey Jeff, thanks for the presentation and chat at the Philly .NET Meet Up. I wanted to follow up with you on JSONPath parsing support in System.Text.Json. Found this Issue: github.com/dotnet/runti...
How can I help push this forward?
How can I help push this forward?
Random shots from the vendor floor at #PAXUnugged in Philly.
December 7, 2024 at 2:50 PM
Random shots from the vendor floor at #PAXUnugged in Philly.
December 7, 2024 at 12:04 PM
Sunset at 4:39 PM in Cape May, NJ. This early darkness makes me feel like going to sleep by 7:30.
November 26, 2024 at 2:28 PM
Sunset at 4:39 PM in Cape May, NJ. This early darkness makes me feel like going to sleep by 7:30.
This is a post from an automated client. How about them apples?
November 16, 2024 at 9:44 PM
This is a post from an automated client. How about them apples?
The real loser last night was Netflix. Its cloud can’t scale.
November 16, 2024 at 4:52 PM
The real loser last night was Netflix. Its cloud can’t scale.
After careful contemplation and much consideration, I have concluded that I really don't want to rock and roll all night and party every day.
November 16, 2024 at 1:40 AM
After careful contemplation and much consideration, I have concluded that I really don't want to rock and roll all night and party every day.
On Wednesday, November 20th, I'll be sharing highlights and experiences from two years of attending Black Hat and DEFCON in Vegas. To cap it off, I'll demo deserialization remote code execution vulnerabilities.
meetup.com/philly-net/eve…#blackhata#defcono#csharpr#cybersecurityty
meetup.com/philly-net/eve…#blackhata#defcono#csharpr#cybersecurityty
https://meetup.com/philly-net/eve…
November 13, 2024 at 11:31 AM
On Wednesday, November 20th, I'll be sharing highlights and experiences from two years of attending Black Hat and DEFCON in Vegas. To cap it off, I'll demo deserialization remote code execution vulnerabilities.
meetup.com/philly-net/eve…#blackhata#defcono#csharpr#cybersecurityty
meetup.com/philly-net/eve…#blackhata#defcono#csharpr#cybersecurityty
Overused film device: whistling kettle to signal stress. The scene should communicate stress without the need for this played out cue.
November 12, 2024 at 3:54 AM
Overused film device: whistling kettle to signal stress. The scene should communicate stress without the need for this played out cue.
Overused film device: whistling kettle to signal stress. The scene should communicate stress without the need for this played out cue.
November 17, 2024 at 5:40 AM
Overused film device: whistling kettle to signal stress. The scene should communicate stress without the need for this played out cue.
On Wednesday, November 20th, I'll be sharing highlights and experiences from two years of attending Black Hat and DEFCON in Vegas. To cap it off, I'll demo deserialization remote code execution vulnerabilities.
https://www.meetup.com/philly-net/events/302688279/
#blackhat #defcon...
https://www.meetup.com/philly-net/events/302688279/
#blackhat #defcon...
403 Forbidden
www.meetup.com
November 17, 2024 at 5:40 AM
On Wednesday, November 20th, I'll be sharing highlights and experiences from two years of attending Black Hat and DEFCON in Vegas. To cap it off, I'll demo deserialization remote code execution vulnerabilities.
https://www.meetup.com/philly-net/events/302688279/
#blackhat #defcon...
https://www.meetup.com/philly-net/events/302688279/
#blackhat #defcon...
Where would we be without TikTokers silently pointing and enthusiastically nodding at videos playing in the background?
November 17, 2024 at 5:40 AM
Where would we be without TikTokers silently pointing and enthusiastically nodding at videos playing in the background?
At 2:00 pm EST today, I'll be on the Visual Studio Toolbox show live!
I'll cover a few tools used by penetration testers and do a deep dive into .NET Serialization vulnerabilities.
https://www.youtube.com/watch?v=cUTeazTFKq0&list=PLReL099Y5nRcZjb0s3Qu7cOH7jv5gF9P_&index=54
I'll cover a few tools used by penetration testers and do a deep dive into .NET Serialization vulnerabilities.
https://www.youtube.com/watch?v=cUTeazTFKq0&list=PLReL099Y5nRcZjb0s3Qu7cOH7jv5gF9P_&index=54
November 17, 2024 at 5:40 AM
At 2:00 pm EST today, I'll be on the Visual Studio Toolbox show live!
I'll cover a few tools used by penetration testers and do a deep dive into .NET Serialization vulnerabilities.
https://www.youtube.com/watch?v=cUTeazTFKq0&list=PLReL099Y5nRcZjb0s3Qu7cOH7jv5gF9P_&index=54
I'll cover a few tools used by penetration testers and do a deep dive into .NET Serialization vulnerabilities.
https://www.youtube.com/watch?v=cUTeazTFKq0&list=PLReL099Y5nRcZjb0s3Qu7cOH7jv5gF9P_&index=54
November 17, 2024 at 5:40 AM
I documented a walk through to use a .NET Framework vulnerability to open a reverse shell by exploiting the BinaryFormatter and ClaimsPrincipal.
https://github.com/johniwasz/rce-serialization-dotnet/blob/init-docs/docs/serialization/BinarySerialization.md
#cybersecurity
https://github.com/johniwasz/rce-serialization-dotnet/blob/init-docs/docs/serialization/BinarySerialization.md
#cybersecurity
File not found · johniwasz/rce-serialization-dotnet
Examples of JSON and binary and serialization vulnerabili...
github.com
November 17, 2024 at 5:40 AM
I documented a walk through to use a .NET Framework vulnerability to open a reverse shell by exploiting the BinaryFormatter and ClaimsPrincipal.
https://github.com/johniwasz/rce-serialization-dotnet/blob/init-docs/docs/serialization/BinarySerialization.md
#cybersecurity
https://github.com/johniwasz/rce-serialization-dotnet/blob/init-docs/docs/serialization/BinarySerialization.md
#cybersecurity
#AprilFools day - the one day a year we’re skeptical of what we see online.
November 17, 2024 at 5:40 AM
#AprilFools day - the one day a year we’re skeptical of what we see online.
Using HaikuBox to aid Cornell Lab of Ornithology's study on bird behavior during eclipse. Joy in contributing to IoT meets nature! #birding #Science
https://haikubox.com/pages/scientific-discovery
https://haikubox.com/pages/scientific-discovery
Scientific Discovery
Using Haikubox to learn more about bird behavior, birdson...
haikubox.com
November 17, 2024 at 5:40 AM
Using HaikuBox to aid Cornell Lab of Ornithology's study on bird behavior during eclipse. Joy in contributing to IoT meets nature! #birding #Science
https://haikubox.com/pages/scientific-discovery
https://haikubox.com/pages/scientific-discovery
April 19th, I'll be at the <a href="http://philly.NET" class="hover:underline text-blue-600 dark:text-sky-400 no-card-link" target="_blank" rel="noopener" data-link="bsky">http://philly.NET Code Camp 2024 giving my new talk, Hack Your Site Before Someone Else Does! You've heard of SQL injection, but have you heard of second order SQL...
November 17, 2024 at 5:40 AM
April 19th, I'll be at the <a href="http://philly.NET" class="hover:underline text-blue-600 dark:text-sky-400 no-card-link" target="_blank" rel="noopener" data-link="bsky">http://philly.NET Code Camp 2024 giving my new talk, Hack Your Site Before Someone Else Does! You've heard of SQL injection, but have you heard of second order SQL...