lrvick

from tasks import task1

def get_results(queries):
    query_procs = task1.delay(queries).get().join()
    results = []
    for query_proc in query_procs:
        # while the following iterate() is happening, the other query_procs are ignored.
        # ideas on iterating over all of them at once?
        for result in query_proc.iterate(): 
            yield result

lrvick

--- iso1
+++ iso2
├── isoinfo -l -i {} -R
│ @@ -1,11 +1,11 @@
│  
│  Directory listing of /
│  dr-xr-xr-x   3    0    0            2048 Oct 16 2020 [     29 02]  . 
│ -dr-xr-xr-x   2    0    0            2048 Oct 16 2020 [     29 02]  .. 
│ +dr-xr-xr-x   3    0    0            2048 Oct 16 2020 [     29 02]  .. 
│  dr-xr-xr-x   3    0    0            2048 Oct 16 2020 [     30 02]  boot 

lrvick

--- rc11-a/airgap_x86_64.iso
+++ rc11-b/airgap_x86_64.iso
├── isoinfo -l -i {} -R
│ @@ -1,11 +1,11 @@
│  
│  Directory listing of /
│  dr-xr-xr-x   3    0    0            2048 Oct 14 2020 [     29 02]  . 
│ -dr-xr-xr-x   3    0    0            2048 Oct 14 2020 [     29 02]  .. 
│ +dr-xr-xr-x   2    0    0            2048 Oct 14 2020 [     29 02]  .. 
│  dr-xr-xr-x   3    0    0            2048 Oct 14 2020 [     30 02]  boot 

lrvick

product/app/QtiTelephonyService/QtiTelephonyService.apk
product/app/datastatusnotification/datastatusnotification.apk
product/app/uceShimService/uceShimService.apk
product/etc/permissions/com.qualcomm.qcrilmsgtunnel.xml
product/etc/permissions/com.qualcomm.qti.imscmservice-V2.0-java.xml
product/etc/permissions/com.qualcomm.qti.imscmservice-V2.1-java.xml
product/etc/permissions/com.qualcomm.qti.imscmservice-V2.2-java.xml
product/etc/permissions/embms.xml
product/etc/permissions/qcrilhook.xml
product/etc/permissions/telephonyservice.xml

lrvick

QubesOS TL;DR Setup

Requirements

1. UI enforcing GnuPG HSM with sig subkey installed
   • Examples: Yubikey, Ledger, Trezor
2. Public key matching device in step #1 on flash drive
3. TOTP/HTOP capable Personal HSM
   • Examples: Nitrokey, Librem Key
4. PC with TPM verified coreboot-heads firmware installed

lrvick

#!/bin/bash
set -e

# Usage: source <(aws-set-creds aws-access-keys.example.asc)

in_file=${1?}
out_file=$(mktemp -p /dev/shm/)
creds=$(gpg -d ${in_file} 2>&1)
aws_access_key_id=$(printf "$creds" | tail -n1 | cut -d ',' -f1)
aws_secret_access_key=$(printf "$creds" | tail -n1 | cut -d ',' -f2 | sed -e 's/\r//g' )

lrvick

I know exactly what I want in a long term role so I can save us some time.

For me to be willing to change jobs at this point I would expect:

• A high level of autonomy where I am allowed to work weird hours.
• Have my obsession for auditable everything be humored/tolerated
  • I prefer to work with open platforms like RISC-V and OpenPower and open operating systems like Linux, FreeBSD, OpenBSD, Sel4, etc
  • I am never asked to rely on any software I can't audit on any of my personal or company devices.
• No need to go find clients myself or worry about the business side of the house
• Travel/lodging covered for the 2-3 security conferences I try to attend every year.

lrvick

device="coral"
set -x

while true; do
  duplicate=$( \
  	 make DEVICE=${device} build \
  	 | grep -A1 'FAILED:' \
  	 | grep 'error:' \
  	 | awk -F"', previously defined" '{print $1}' \
  	 | awk -F"out/target/product/${device}/" '{print $2}' \

lrvick

PhysSec Shopping List

Need to get into a building? Start a police car? Borrow a bulldozer? Go to a restricted elevator floor? It is pretty easy with the right tools and sometimes a bit of practice.

Knowing what those tools even are is half the battle. This guide attempts to solve that for you for for free.

Actually obtaining these tools is non-trivial but -all- of them can be obtained

lrvick

#! Todo List

Things we want to get done for the community along with bounties for each.

Notes

A project is done when a helm chart is submitted to the infra repo, and is in a state where it can be deployed and upgraded/downgraded seamlessly with well defined health checks.