the ESXi era was irritating as fuck. Only vmware could get away with such an absolute dogshit hardware compatibility list.
da_667
@da_667@infosec.exchange
Senior Security Researcher, Proofpoint Emerging Threats.
I've been doing this cybersecurity thing for the better part of a decade now. Probably longer than that. I'm starting to forget. Time is relative, but it surely isn't kind to my memory.
I'd like to think I do cybersecurity well, but blue teamers collectively get told they're doing it wrong constantly. So maybe I just failed forward throughout my career.
Oh, I wrote a book. Its a good framework for setting up a virtual machine lab. See my bookmarked toots if you're curious.
Finally, I occasionally write about tech/nerd-related things over at https://www.totes-legit-notmalware.site where I expose that I have a short fuse, and no filter.
Work-Related hashtags:
#Iocs #ThreatIntel #DFIR #Malware #NSM #suricata #snort #BEC #phishing #APT #ThreatDetection
Hobbies:
#VideoGames #XCOM2 #Minecraft #Synthetik #Fallout #Skyrim #Anime #Manga #Adventure #Fantasy #Isekai #HomeImprovement #WoodWorking #MetalWorking #HomeLab
Posts
Latest notes
No posts yet.
I remember the time I built out my own homelab server (a "whitebox" super micro build) . I SPECIFICALLY looked up the motherboard I was purchasing to make god damn sure it would work with ESXi.
Oh, it worked.
but the built-in RAID controller didn't. So I couldn't do RAID arrays. At all.
so, there was more than one time where I woke up, found a dead drive in the server. and THAT was the drive that was housing half of my VMs. and it just took a gigantic shit.
it wasn't very long afterward that broadcom acquired vmware, and suddenly told everyone who was using the free version of ESXi to go eat shit, and charged their remaining customers renewals with a few extra zeroes in the renewal quote.
then, after years of people telling me, asking me, pleading with me to "bro, just try proxmox, trust me" I said, "fuck it, proxmox can't be worse than this. and then I saw the fabric of the universe open before my eyes. "Holy shit, all of this software is functional, and the ISO uploader web form doesn't take 20 fucking days to upload an ISO. WHAT THE FUCK HAVE I BEEN DOING WITH MY TIME."
y'all remember that period of time where ESXi was the be-all end-all of virtualization? so much so that several big computer hardware companies put SD card slots onto the server motherboard directly.
and not just ONE, but multiple, in a RAID mirror configuration, in case one of the SD cards, as they were kinda likely to do in that era, would just shit the bed, you wouldn't have an unbootable ESXi server.
We lived in wild times.
BORN TO PCAP
TCP STREAM IS A FUCK
DROP EM ALL
I AM SURICATA MAN
410,376,111,223 ALERTS
tomorrow morning, looking at new and incredibly stupid CVEs.
@k3ym0 "good luck if you're not doing deep DNS inspection"
iodine, dnscat, and literally every other DNS tunneling technique that has existed in the past 20-ish years: lol. lmao, even.
Still, quite impressive, but saying this shit is a hard to detect covert channel is unmitigated bullshit.
My ancestors are smiling, imperial. Can you say the same?