• 2022 Cross-country Drive (Part 3: Lodging)
    2022 Cross-country Drive (Part 3: Lodging)

    For those who travel a lot, myself included a long while back, talking about lodging is not very interesting. Unless the room is spectacular or perhaps a grim experience, most of us have experienced average hotel rooms. The biggest fail here, in the context of my trip, is not taking pictures of the single worst […]

  • 2022 Cross-country Drive (Part 2: The Road)
    2022 Cross-country Drive (Part 2: The Road)

    Warning, this will be a photo-heavy blog sharing some pictures I took throughout the three weeks on the road along with commentary. Cities Bigger cities are all so different and it always astounds and pleases me. On this trip I passed through Chicago, Cleveland, Philadelphia, New York, Washington D.C., and Atlanta. Each are light years […]

  • 2022 Cross-country Drive (Part 1: Overview)
    2022 Cross-country Drive (Part 1: Overview)

    Overview Over the last 10.5 years, I have taken all of two weekends completely off from work. Just those two times that I did not work at all. No other vacations, just working hard in start-up mode well past the start-up phase. I do not have strong enough words to warn you off from doing […]

  • When CVE Typos Become Advisories
    When CVE Typos Become Advisories

    For those who follow me on Twitter, you may notice a considerable number of my Tweets are related to pointing out or confirming CVE IDs that are typos. Recently I ran into an interesting edge case where a typo CVE ID gained life of its own. Typically such typos gain life through aggregation blogs that […]

  • Rebuttal: Skeletons in the Closet
    Rebuttal: Skeletons in the Closet

    On April 22, 2022, Nate Warfield of Prevailion published an article on Threatpost on the topic of zero days. I’m a little late to this article, but because this horse still has some life in it apparently, I feel obligated to once again point out how the term ‘zero day’ has basically lost all meaning. […]

  • 2020 – 2022 Charity Auction Drive Summary
    2020 – 2022 Charity Auction Drive Summary

    Between October 26, 2020 and May 12, 2022, I put up 197 charity auctions on behalf of myself and 32 other people who donated items for the cause. Whoever donated the item for the auction got to pick the charity, or in some cases asked me to pick. For the most part, all money went […]

  • Rebuttal: How to avoid headaches when publishing a CVE
    Rebuttal: How to avoid headaches when publishing a CVE

    On May 12, 2022, Adeeb Shah published an article on Help Net Security titled “How to avoid headaches when publishing a CVE”. Shah is a Senior Security Consultant with SpiderLabs, part of Trustwave. Note that it also appears on Trustwave’s blog and includes a second name in the byline, Bobby Cooke. For the sake of […]

  • Rebuttal: A blended look at what makes the CVE program try to tick
    Rebuttal: A blended look at what makes the CVE program try to tick

    A few days ago, Tod Beardsley published an article on SC Magazine titled “An inside look at what makes the CVE Program tick“. Overall the article is well-written and offers some insights into MITRE, CVE, and their “CNA” program or CVE Numbering Authorities. Beardsley does a good job enumerating some basics about the program, the […]

  • Book Review: Perdido Street Station
    Book Review: Perdido Street Station

    Perdido Street Station February 27, 2001 The Amazon summary for this book reads: The metropolis of New Crobuzon sprawls at the center of the world. Humans and mutants and arcane races brood in the gloom beneath its chimneys, where the river is sluggish with unnatural effluent and foundries pound into the night. For a thousand […]

  • Abbott, the Libre 2 App, and No Common Sense
    Abbott, the Libre 2 App, and No Common Sense

    For those familiar with continuous glucose monitors (CGM), you may be familiar with the Abbott FreeStyle Libre device. It is an extremely popular device that is based on Near-field communication (NFC) where the wearer uses their phone to poll the device attached to their body. NFC is convenient but very low range; it’s the same […]