There’s nothing for you in the past. It’s worth repeating that to yourself once in a while. There’s nothing for you in the past.
Many of us spend way too much of our time thinking about things that happened in the past. How we could have done this or that. Maybe if we made this decision, or chose that job, or that friend. Or maybe we reminisce on the good old times. Ruminate on what it would be like to bring something back, or to revisit something again.
It can become self destructive and can hinder both your direction in life and your mental health. Stop living in the past and live in the present. The past is a lonely place full of memories where nothing can be changed. Move on with your life, focus on the present and the future.
Author: Dave VR
AV Test
I’m occasionally asked what antivirus tool I use, or what anti malware tool, personal firewall software, etc. My answer changes with each passing year. New tools emerge, old ones don’t score so well or become bloated with features I don’t need.
These days I just point people at AV Test. These guys do all the heavy lifting for you. They test the commercial and free security tools, putting them through rigorous testing and benchmarking. They then collate the results and present them to you for free to make your own choices.
So next time you want to know what the best antivirus tool is for your device head on over to AV Test. I check in at least once a year to see if I need to upgrade my own setup.
ChatGPT hacking buddy
I’ve given many talks on cyber security and ethical hacking over the past few years and one of the things I tend to say a lot is: “There is no such thing as cheating in hacking”.
What I mean by this is that as long as you are learning you are not cheating. It’s only when you take shortcuts and learn nothing in the process that you are cheating yourself.
So when attempting a CTF or Hack the Box or Try Hack Me machine and you get stuck and you have exhausted every technique and trick that you know and nothing is working, sure, go search for a writeup or forum posts on how to progress. Read just enough to get yourself unstuck and then keep going. Learn the technique, tool, or whatever you needed to know to progress. Add it to your knowledge-base.
This is learning not cheating. Finding the answer but not learning how and why it worked is just cheating yourself.
Recently I found myself stuck on a CTF that I was taking part in for fun. It was brand new so there were no writeups or forum articles to peek at. And I was stuck. In theory I could just move on to the next challenge and come back to this one later, time allowing, but I was having fun and I wanted to figure out why my solution wasn’t working. I wanted to learn, now.
I decided to see if AI could help. I’ve been playing around with the free version of ChatGPT recently and wondered if I could make use of it in this situation. I gave it a copy of the code from a program I had disassembled as part of the CTF and asked it to tell me what the code was doing. It did, in great detail. I then asked it how I could extract certain data that the program was storing in memory. It gave me detailed instructions using a tool that I was unfamiliar with. I asked if if I could do the same with another tool I was familiar with. It kindly said no and offered to teach me how to use the tool it recommended. I agreed and learned how to use the tool and managed to make progress.
I then continued hacking at the CTF asking ChatGPT for assistance when required. Although technically cheating, I was constantly learning throughout, and allthough I managed to get some virtual points on a virtual scoreboard, they were worthless in the real world, but the knowledge I gained from hacking with ChatGPT was priceless.
So now when I get really stuck and I’ve exhausted everything I know, I turn to ChatGPT as my AI hacking buddy. Only after I’ve finished the challenge, or both ChatGPT and I have failed to come up with a solution do I go looking for a writeup.
The town centre
It’s nice to have a change of scenery once in a while, especially when writing. Looking at the same surroundings day after day can become somewhat dull after a while. To shake things up I like to hop on a bus and travel to a high street in any nearby town, find a coffee shop or bar, find a seat by a window, unpack my mobile office from my go bag, and start writing.
Over the past few years I’ve noticed a real change in the high streets I visit: less big chains, more empty shops, and more of a diverse specific set of shops.
It may be different where you live but I’m seeing more vape shops, nail and hair salons, foreign supermarkets, tattoo parlors, phone and gadget accessory shops, betting shops, and cheap shops (known as pound shops in the UK).
Supply and demand would indicate that there is a need for these stores if they are thriving. I believe that these are not new shops, just new to the high street. Maybe they were once down a side street or high street adjacent.
With the big chains going into administration or reducing the number of stores they operate, we are seeing more space opening up on the high street, and nature abhors a vacuum, or at least commercial landlords do. Rents are negotiated downwards, government initiatives are introduced around business rates to encourage entrepreneurs to take up the opportunity, and voila! We have shops that usually occupy an off high street location being relocated on it side-by-side with the few remaining big chains.
Don’t get me wrong, I think change is good. I’m all for a diverse high street meeting the needs of the people. I’m just curious to see how it evolves further.
What are your thoughts? Do you still visit your local high street? Do you think the high street has a future in our evolving culture?
Dead zones
I like to write when I’m out and about. Cafes, bars, anywhere with a table and seat. Somewhere that I can unfurl my bluetooth keyboard and just start typing, downloading my thoughts into the cloud.
Occasionally you come across dead zones. Places where there is no phone signal or wifi. Your device cannot talk to the cloud. Sure you can type, but you can’t do any online research and you can’t save to the cloud.
Dead zones can be peaceful. Just you and your thoughts and your unconnected device. You can still write. You also have the added advantage that no one can reach you!
In some places there may be no phone signal but there may be wifi, but do you trust it? When I find a comfy spot that is in a dead zone I sometimes move to an area with signal and download everything I need then return to the dead zone to work, free from distractions. Bliss!
The loneliness of contracting
You probably don’t think of contracting as a lonely profession. The truth is you can be lonely even when surrounded by people. Lots of people, day in and day out. From the moment you leave your home to the moment you return.
I’ve contracted for the best part of three decades, and while it has been a profitable and rewarding experience, you make friends with loneliness. With each new contract comes a new location, building, and people. You say hi, maybe chat by the water cooler or coffee point. No conversation is too deep and no friendship too real. Eventually you will move on. Your contract has an end date.
After a while you get used to it. With each new contract comes a new location and new people. You start spotting personality types, management styles, office politics. You spot patterns. It becomes a game. You find the best places to eat or get coffee, and for a while you become a regular and are recognised. But it’s fleeting. Eventually you move on to the next contract and your face is forgotten.
Maybe you’ll return to a previous role on the recommendation of someone and the people there may even recall your name and ask how you’ve been. Sometimes you return to find the only constant is you. Same building, same office, same desk, different project, different manager, different team. It’s a strange feeling but after a while you can get used to anything. Like ending up working on every floor of a particular building over a ten year period, working for different companies on different floors. It felt like I’d completed a weird goal when I was hired by a company occupying the only floor I had yet to work on. Reward unlocked! Set complete!
Contracting can be a lonely profession. You leave your home, commute to a location, put in the hours, commute home, and repeat. The location changes often so even the people you see on your daily commute change. Variety can be fun and you are certainly never bored. But you rarely make any real connections.
Fingerprinting and profiling
I’ve been thinking a lot recently about digital fingerprinting and profiling, how bad it’s getting, all of us becoming easily tracked, digitally.
You could be emailing a friend about going camping and the next minute your phone apps are serving you adverts about camping equipment and camp sites in your area. Or maybe you are considering a holiday to Greece and you look at a few travel sites. Then every web site you seem to visit afterwards is serving you Greece-related getaway adverts.
It’s getting out of control. Not quite Minority Report, but not far off. Web sites are able to capture data about your device via user agent strings, cookies, through third-party arrangements, and other methods, and they can knit-together your surfing history to build a picture of your habits and interests to better target you with product and service advertisements.
We are being tracked, fingerprinted, and profiled digitally without our explicit consent. And it’s getting worse. Smart TVs and devices listen and buffer your conversations waiting for you to provide instructions. Are they recording what we say? How come when I spoke about maybe going to buy a new car with my wife in the comfort of our own home, that when I checked my web mail on my mobile later I was served car adverts? Or how come when I bought some beer, chicken, and BBQ sauce at the local supermarket where I used my loyalty card with cash, the adverts on my phone and PC are now trying to sell me BBQs? A coincidence? Or am I being digitally tracked across multiple devices and accounts?
Am I being paranoid or are we being digitally tracked, fingerprinted and profiled?
Lego
In my youth I saved my pocket money religiously to buy Lego. Small spaceships, cars, trucks, minifig sets. You name it, as soon as I had enough saved I would make the trip to the toyshop to purchase a set. I would assemble it straight away then throw away the box and instructions. How was I to know that vintage Lego would appreciate in value? To me I appreciated its value right there and then. I would play with it, I would collect it. I would create my play areas and feed my imagination. It was one of my favourite creative toys (Meccano being second).
Decades later and my collection of Lego remains at my parents home. It’s there for any child that visits to play with. I worked out once, just for fun, that my box of vintage Lego is worth four figures based on the sets it contains and their box-less, instruction-less value with collectors.
I have no intention of ever selling it. To me it is a means to stimulate the young mind and I am happy that it continues to do so long after I have stopped playing with it.
These days I have children of my own and they have a Lego collection far greater in size than the one I had. Of course yours truly gets the opportunity to play with it, to continue to stimulate my own mind and to create with my children.
TV and Film news before the masses
I’m often asked by friends and family how I know when a new TV show, season, or movie is coming out, as well as its UK release date, before everyone else does.
You see I’m an avid fan of certain TV shows and movies and I just have to know when the next season of my favourite show is coming out, if at all, and what my favourite actors are working on.
So I’ll let you in on a secret, how I find out before most people.
- I follow actors on Instagram. Actors love to boast about what they are working on and they leak information. Whether it’s teasers via photos or texts they can’t help themselves!
- I follow the sites run by geeks and journos that are obsessed with learning what actors and TV and film studios are up to. Sites like Geek Town.
- I have set up RSS feeds and app notifications to inform me about network and studio deals, actors contracts and coming soon notifications.
There you go. Easy! Now you too can find out when a new TV show or movie is in the works and when it is likely to be available in your area and on what platform.
Thoughts on LinkedIn
Musings on LinkedIn.
I’ve been using LinkedIn for many years and I keep changing how I use it. Below are just a few of my notes on how I’ve made use of the social network for work and networking.
– You don’t need to get to 500+ connections. There’s no game or points that you win if you do.
– You don’t have to connect to everyone you meet. Quality over quantity!
– If you’ve connected to someone and the only way you can contact them is through LinkedIn and they don’t respond to any messages over a period of 3 months, remove them as a connection. If you can’t communicate with them or introduce them to anyone then what use are they? Unless you want to follow their posts that is. Quality over quantity.
– People change jobs. Sometimes often. If you are using LinkedIn to connect to people in a certain field or industry and a connection changes to something you have no interest in, consider dropping the connection. It may sound mercenary but this is LinkedIn not Facebook.
– If you want certain people to reach out to you or be reminded of your existence without appearing to reach out first, look at their profile. LinkedIn will tell them you looked and your name will appear in their notifications list.
– You can silence spammy connections.
– You can subscribe to interesting newsletters and unsubscribe when they become boring.
– You can follow interesting people and companies and unfollow when they cease to provide whatever made you follow in the first place.
– LinkedIn is not for stalking but it is useful for OSINT.
– People post too much information. People leak sensitive data!
How do you use LinkedIn? Any tips?