31 pointsby lschueller13 hours ago4 comments

whynotmaybe12 hours ago
Noob sidenote, TIL that you must "defang" ip addresses in security reports so you write it with brackets like 135.136.1[.]133.
This prevent it from being clickable.
- lbourdages12 hours ago
  Links are also often modified with "hxxps" instead of "https". Link is still clickable but will not work.
  - Bender12 hours ago
    There was a day when many people used a Firefox addon that rewrote hxxps to https and would undefang the IP addresses. I can't remember what it's called but these days I use FoxReplace to do similar things. If I want to obfuscate things I typically base64 encode for the laptop and workstation users.
    Q3V6IEkgYW0gcGlwcGkgbG9uZ3N0b2NraW5ncyBob3BlIGFuZCBhIGhheSBhbmQgYSBob3BlIHNoYXcgbmF3Lg==
bcjdjsndon11 hours ago
I see they've learnt a thing or two from stuxnet
ChrisArchitect12 hours ago
Earlier release page: https://news.ycombinator.com/item?id=47679202
tencentshill12 hours ago
Therefore...defund CISA?