I attended Defcon 30 for the first time. One of my best memories wasn't at a talk. I was browsing around the vendor hall and stopped by the Toool table (I think it was Toool) looking at the lock pick sets. I've never done lock picking before. A guy stepped up and was making a purchase of something then he looked at me and said in a stern voice "What Do You Want!" as if he was offended like I was staring at him invading his space. I said sorry, nothing and took one step to the side away from him. After he finished his purchase he handed it to me and said "this is for you!" I was shocked and speechless. I said "uh, thank you!" and he smiled and walked away. It was a 9 piece pick set. I still have it and try to use it everyday... I still suck at picking but I have a better understanding and it made for an unforgettable memory of Defcon... I hope to go again and pay it forward to someone with a new pick set... Have fun... dont' get caught...
That just shows how big Microsoft's monopoly is, they aren't seen as a "tech company" by a lot of people, they are seen as "the government of computers"
Cheers Ali! It appears that CrowdStrike's driver kit which is signed by Windows to access the Kernel apparently had a function that took two params. The first was 0 and the second being 0x9C which likely was meant to be an offset into a struct. In X64 architecture, when the R8 register loaded this value, it found there was not a valid address there and therefore BSOD.
Thanks for the input! I had actually packed my schedule with almost non-stop talks for both events. I'll change my approach now and focus more on the in person value adds.
My early days of becoming an IT specialist, I was thrown into the trenches of multiple states across America. Our proud unit of mixed techs was amazing, the best guy on our crew nicknamed the “*B1-Dinosaur”* his Copper/Microwave helped us hold the line while we remember the trying times of perfecting our main tool a High Quality Dual Density [1.44MB] Floppy Disk, we fought long & hard to protect America during *The Real Y2K Wars*
Thank you for showing us your beautiful mind. It it’s extremely attractive to listen to it work. Keep up the great content. Even for us very old black hats.
It's no secret that there is alot of computer viruses out there, even those affecting motherboards that critically impact our lives to use our computers. Sometimes it can be chain attacks that uses exploits to get into systems and cause damage or steal data from people or even big companies or the government itself. So it's important to note that CrowdStrike was not a big deal in comparison to other more serious threats out there, although CrowdStrike was a faulty patch update for a IT security solution, that impacted alot of systems... there's far worse things out there that can hit your computers harder and even delete data of the systems, so I'd say, CrowdStrike was like a mild one at best. A patch update can easily fix this problem, unlike with more serious viruses, trojans and rootkits and firmware exploits of motherboards and routers especially. But that's just my two cents, lol.
"Tebibyte"... Huh... Well god damn... The more you know! Question for Ali: What programming books changed the way you look at coding? If ya got time. If not, I understand.
They gonna blame Microsoft for having a weird OS, "this should have work fine we got fresh installed VMs to prove it works fine, and it works on Linux&MacOS" xD
FWIW: I'm pretty sure the Azure outage was completely separate from Crowdstrike. It started and I think was completely fixed before blue-screens started popping up everywhere. The meme is still funny, but I mention it in the spirit of "it is our responsibility to provide accurate info to people who are not computer-savvy".
Suddenly everyone is very interested in listening to you talk 😂 Literally a dime piece. Smart and pretty, something you'll never meet in real life boys.
About memes. Where are all the "The Cloud Strikes Back" or "The Cloud Strikes Again" jokes? I know that SNL is out. But late night hosts were quick to jump on the Tinan boat. Come on!
we almost switched to Falcon EDR last year. We did the their demo and were in deep talks with their sales people but my boss decided to stay with Sophos in last minute decision. we dodged a bullet.
I attended Defcon 30 for the first time. One of my best memories wasn't at a talk. I was browsing around the vendor hall and stopped by the Toool table (I think it was Toool) looking at the lock pick sets. I've never done lock picking before. A guy stepped up and was making a purchase of something then he looked at me and said in a stern voice "What Do You Want!" as if he was offended like I was staring at him invading his space. I said sorry, nothing and took one step to the side away from him. After he finished his purchase he handed it to me and said "this is for you!"
I was shocked and speechless. I said "uh, thank you!" and he smiled and walked away. It was a 9 piece pick set. I still have it and try to use it everyday... I still suck at picking but I have a better understanding and it made for an unforgettable memory of Defcon... I hope to go again and pay it forward to someone with a new pick set...
Have fun... dont' get caught...
Russia was unaffected since sanctions have banned them from using crowdstrike.
They will have their own crowdstrikes in the future. When their savings are used up.
The meme trying to blame nation states for the "AZURE OUTAGE"(LOL) is probs my fav. yes
That just shows how big Microsoft's monopoly is, they aren't seen as a "tech company" by a lot of people, they are seen as "the government of computers"
The cto of crowdstrike was also the cto of macafee when that company effd up. So ClownStrike comes to mind.
Cheers Ali! It appears that CrowdStrike's driver kit which is signed by Windows to access the Kernel apparently had a function that took two params. The first was 0 and the second being 0x9C which likely was meant to be an offset into a struct. In X64 architecture, when the R8 register loaded this value, it found there was not a valid address there and therefore BSOD.
Thanks for the input! I had actually packed my schedule with almost non-stop talks for both events. I'll change my approach now and focus more on the in person value adds.
Thanks for the show Ali, keep it up! :)
YAY! I managed to post before the creepers! Good video, thanks for the content.
Thank you Ali! ❤🎉
Dave Plummer has a couple videos diving deeper into the CrowdStrike matter.
He's done a very deep dive on all the issues. A few surprising twists in the background history.
Crowdstrike needs to buy everyone who works desktop support lunch…
My early days of becoming an IT specialist, I was thrown into the trenches of multiple states across America. Our proud unit of mixed techs was amazing, the best guy on our crew nicknamed the “*B1-Dinosaur”* his Copper/Microwave helped us hold the line while we remember the trying times of perfecting our main tool a High Quality Dual Density [1.44MB] Floppy Disk, we fought long & hard to protect America during *The Real Y2K Wars*
Yes, busy day it was😅 thank you ❤
Your doing great 💪👏👏
7:08 a reboot is required. How about 15 consecutive reboots being part of this solution ? Heard that too didn't y'all?
Our VMs were rebooting that many times a minute ... they did not self-recover
I am so excited that VetCon is going to have our own village this year and still get our party.
omg thats so exciting!!!
Kool look
Thanks for the info!
Thank you for showing us your beautiful mind. It it’s extremely attractive to listen to it work. Keep up the great content. Even for us very old black hats.
physical intervention with an axe
It's no secret that there is alot of computer viruses out there, even those affecting motherboards that critically impact our lives to use our computers. Sometimes it can be chain attacks that uses exploits to get into systems and cause damage or steal data from people or even big companies or the government itself. So it's important to note that CrowdStrike was not a big deal in comparison to other more serious threats out there, although CrowdStrike was a faulty patch update for a IT security solution, that impacted alot of systems... there's far worse things out there that can hit your computers harder and even delete data of the systems, so I'd say, CrowdStrike was like a mild one at best. A patch update can easily fix this problem, unlike with more serious viruses, trojans and rootkits and firmware exploits of motherboards and routers especially. But that's just my two cents, lol.
I like your teaching,,, I would like to start and become a professional hacker
Banger
"Tebibyte"... Huh... Well god damn... The more you know!
Question for Ali: What programming books changed the way you look at coding? If ya got time. If not, I understand.
Because storage vendors corrupted the values of KB, GB and TB to round them to decimal powers whereas the original definitions were base 2 powers
I wonder how this would affect Crowdstrike 🤔
They gonna blame Microsoft for having a weird OS, "this should have work fine we got fresh installed VMs to prove it works fine, and it works on Linux&MacOS" xD
You should mention, that the update file was empty. And windows kernel stop, because of protection of system.
FWIW: I'm pretty sure the Azure outage was completely separate from Crowdstrike. It started and I think was completely fixed before blue-screens started popping up everywhere. The meme is still funny, but I mention it in the spirit of "it is our responsibility to provide accurate info to people who are not computer-savvy".
That was an intro...
Shannon? Have you done semething with your hair? 😂
his dimples on his face drive me crazy
I’m sure Amish community are chilling
Clown strike
Can you set up a youtube subscription so we can donate here?
Suddenly everyone is very interested in listening to you talk 😂 Literally a dime piece. Smart and pretty, something you'll never meet in real life boys.
I'm not the only one that likes her a lot? ☺️
I wonder: is she at least equally smart? 👏
90% comments about her dimples
10% comments about the content
Did I nail it? 😂
No can't mention the dimples. That's suddenly demeaning to all women with an MIT degree.
You are nit 90%
How to drown a TH-cam channel I less than 90 days. Phd thesis…
Linux too.
Well Blackrock owns Crowdstrike... soo....
You look like Lara Croft
We should all just go back to the Commodore 64 era of computers. The internet was a mistake.
LOAD "*",8,1 - Lets do this!
With Fujinet you can connect the Commodore 64 to WiFi and the internet and get modern connectivity.
Monetising the internet was a mistake
About memes. Where are all the "The Cloud Strikes Back" or "The Cloud Strikes Again" jokes? I know that SNL is out. But late night hosts were quick to jump on the Tinan boat. Come on!
Thanks for giving us a value in binary tib because were all bots and can quantify that number
Kinda banded on the hacker community....but oh well.
now everyone knows the BSOD. wow... no apology 10$ gift carda crowdstrike! hahaha the name... it was really a strike!
Crowd strike just got famous 😂
what are your creds?
So is anyone hiring people to go around with a usb stick and fix this. I promise it won't have DBAN on it
Better late than never…
No CEO of a security would say they were hacked but instead say it was a bug and hope that they don't have too many jumping ship.. BugMyArse.
Null buldge ? 😂 ok gotta respect the name 😂
NSA, WEF, WHO an Gates has all the answers, more will follow (Ru, Nk, Cn will be getting the blame for all the NSA's hard work)
Hmmm my raspberry pis all seem fine 🤭
Because you aren't running crowdstrike.
They've taken down Linux and macOS too with bad updates.
1:23am to 4pm was my hours worked to clean up the Crowd Strike fiasco! Not fun
And hospital workers did 24hr+ shifts
4am-9pm here. By machine number 12 of 94, I had the muscle memory down pretty well
we almost switched to Falcon EDR last year. We did the their demo and were in deep talks with their sales people but my boss decided to stay with Sophos in last minute decision. we dodged a bullet.
VXUNDERGROUND WOOOOOOO
took you guys couple of days.. a bit slow
🧡🧡🧡🧡🧡🧡🧡🧡🧡🧡
Apologies BUT… 🐡
Hey, just an idea.... can Rubber Ducky (and similar) automate this manual Windows Fix task?
Russia was not affected, sanctions
Looking good minus the cap.
The memes 😂
MSFT who would have thought it could happen?
Cap looks bad
Cutest dimples.
❤DIMPLES!❤
Shannon is better than you