shellsharks

Hello /m/cybersecurity folks! Wanted to get a pulse check on those who use this particular community. I mod both here at Fedia as well as at infosec.pub for /cybersecurity. I run a few weekly threads (e.g. Mentorship Monday) at infosec.pub and have tried to run those same weekly threads here but they get barely any traction, whether that be because they are redundant with infosec.pub or because people here are just not that active yet. For those who main Kbin/Fedia, is there anything you’d like to see that I can help with (weekly threads, community engagement style posts, etc…)? For those who sub here and at infosec.pub, is there anything Kbin adds that you feel is worth pointing out?

Unless some folks come out in favor of keeping the weekly threads here at Fedia, I will stop them and focus on having those threads over at infosec.pub.

Cheers and happy threadiversing!

Weekly thread to discuss whatever you’re working on, big or small, at work or in your free time.

Hey everyone! My name is Mike and I write about #infosec, #tech and other things at https://shellsharks.com. I'm currently running an event this week I refer to as >Shark Week (https://shellsharks.com/sharkweek), which is essentially just me posting some sort of "content" each day for the entire week, coinciding with actual shark week (https://www.discovery.com/shark-week) on Discovery.

Appreciate a follow, boost and/or feedback on the site/posts. Thanks so much! 🦈🦈🦈

Kicking off >Shark Week, I wanted to share everywhere I am these days. I'll admit I am most active on Mastodon but like to maintain some form of presence other places. So connect with me wherever or everywhere!

• Infosec.Exchange: https://infosec.exchange/@shellsharks
• Mastodon.Social: https://mastodon.social/@sass
• Infosec.Pub: https://infosec.pub/u/shellsharks
• Fedia.io: https://fedia.io/u/shellsharks
• Infosec.Town: https://infosec.town/@shellsharks
• Infosec.Place: https://infosec.place/shellsharks
• Threads: https://www.threads.net/@mk3s
• Bluesky: https://bsky.app/profile/shellsharks.com
• Matrix: @shellsharks:matrix.org
• Nostr: npub122gmsek4hrjyw08xj62d2qq04xvfqshvqlxs37w6nn67ea3kxrtsf2022j
• Spoutible: https://spoutible.com/shellsharks
• Post.news: https://post.news/@/shellsharks
• Discord: https://discord.gg/3rkHgtcYbb (as shellsharks)
• Spill: Not on here yet but if anyone has an invite let me know!

Thanks again!

Weekly thread to discuss industry certifications, trainings and other courses/learning. Ask questions, share your experiences and help others!

Hey Kbin-folk, I’ve recently published my take on the “threadiverse” in the form of a quasi-guide but with some other commentary. Appreciate any feedback, good or bad!

Weekly thread to discuss whatever you’re working on, big or small, at work or in your free time.

Anyone familiar/have experience with conducting a Crown Jewels Analysis (CJA)? MITRE’s SEG (“Systems Engineering Guide”) has a process for doing this (page 167) but there are certainly other methodologies. Am working on something like this so any anecdotes would be cool to hear about!

Now here’s two tools I wish I was more experienced with - Semgrep and Jupyter. Beyond this cool article from NCC, I’m interested to hear from anyone who uses either one of these tools. How did you get started, what do you do with them, etc…

Hey Fedia-folk of /m/cybersecurity! Wanted to get a quick pulse-check and collect some thoughts from the community here regarding their usage both current and future. I'll

1. Would anyone like to see weekly threads created for things like #mentorshipmonday? If so, let me know what kind of weekly threads you all would find useful/interesting.
2. There are a few infosec/cyber-related communities that have popped up both here on Fedia and elsewhere (e.g. kbin.social, infosec.pub, etc...). Some are more niche, while others similarly general as this community. What is everyone's thoughts in terms of where they plan to spend their time? I want to be mindful of the fracturing and try to build something here that people find useful.
3. Do you think the "threadiverse" (kbin, Lemmy, etc...) is a viable alternative to Reddit for you? (Assuming you were on reddit originally).
4. If you have any other thoughts or suggestions for the community please share them here as well! Thanks!

Interesting piece from last year on how Spotify does VM

Couldn't find a poll option so I guess people can just weigh in on their thoughts here. I've been a "CISSP-holder" since 2015/2016-ish and have always had the renewal fees paid for by my employer. My renewal date has come and unfortunately I don't think I'll be getting any employer assistance paying the fee this time around. Is it worth keeping? Some important things to know...

• I'm not in government work right now but it's not impossible that I would be sometime in the future.
• I have TONs of other certs so maybe CISSP is redundant?
• CISSP is lame right? =P
• Costs about $125/yr so a 4 year renewal is like $500 </gross>

Hey infosec/cyber/tech folks of the fediverse! With reddit being a mess coupled with my interest in becoming more fedi-active/aware, I wanted to share out my site/blog where I post mostly about cyber and tech but also venture into other non cyber/tech stuff. Check it out and find me on Mastodon if you want to connect or chat! Some interesting stuff I'll highlight from my site is listed below...

• A guide for getting into information security
• A thorough list of named vulnerabilities
• A long list of mini-reviews about trainings I have taken
• A huge repo of infosec blogs I have collected over time (message me if you want to be added)
• A "bootcamp" on Vulnerability Management
• A comprehensive guide on the various threat modeling methodologies that I have encountered.

Thanks!