Say it with pixels. By aloria.Infosec ReactionsTumblr (3.0; @securityreactions)http://securityreactions.tumblr.com/My class B network pentest gets scoped down to 10 hosts port 80 only.<p><img alt="ugh, ok." height="200" src="http://i.imgur.com/hkZ7t89.gif" width="250"/></p> <p>by Kd</p>http://securityreactions.tumblr.com/post/50985686768http://securityreactions.tumblr.com/post/50985686768Tue, 21 May 2013 08:40:34 -0400when you discover that you're not alone on the server you run metasploit from<p><img alt="image" height="360" src="http://i.minus.com/ibeA6Dbe39sM9e.gif" width="480"/></p> <p>by Andrew</p>http://securityreactions.tumblr.com/post/50984935042http://securityreactions.tumblr.com/post/50984935042Tue, 21 May 2013 08:20:36 -0400When suit-and-tie InfoSec corporations try to be relatable by acting "leet"<p><img src="http://i.imgur.com/Jo8ntOT.gif"/></p> <p>by <a href="https://twitter.com/aloria">@aloria</a></p>http://securityreactions.tumblr.com/post/50922907247http://securityreactions.tumblr.com/post/50922907247Mon, 20 May 2013 14:48:52 -0400My reaction when a colleague and I discover a mobile app that is well written<p><img src="http://i.imgur.com/NPcvqoR.gif"/></p> <p>by krangarajan</p>http://securityreactions.tumblr.com/post/50903370703http://securityreactions.tumblr.com/post/50903370703Mon, 20 May 2013 08:40:44 -0400When I block a malicious link before users have a chance to click on it<p><img alt="image" src="http://i.imgur.com/tc9FxTa.gif"/></p> <p>by keinname<span><br/></span></p>http://securityreactions.tumblr.com/post/50902586080http://securityreactions.tumblr.com/post/50902586080Mon, 20 May 2013 08:20:45 -0400Patching MS08-067 right before a penetration test<p><img alt="close call" height="244" src="http://i.imgur.com/7tFO2Bq.gif" width="324"/></p> <p>by <a href="https://twitter.com/marcusjcarey">@marcusjcarey</a></p>http://securityreactions.tumblr.com/post/50847894298http://securityreactions.tumblr.com/post/50847894298Sun, 19 May 2013 16:30:49 -0400When I found a VNC without authentication on a PC of a domain administrator and after asking him why, he answered me : "it's to take control over my PC remotely"<p><img alt="image" src="http://i.imgur.com/zdM9sOj.gif"/></p> <p>by <a href="https://twitter.com/ylujion">@ylujion</a></p>http://securityreactions.tumblr.com/post/50837695202http://securityreactions.tumblr.com/post/50837695202Sun, 19 May 2013 14:24:00 -0400When your exploit crashes the only host with detected vulnerabilities<p><img src="http://i.imgur.com/hXkuA1n.gif"/></p> <p>by <a href="https://twitter.com/breenmachine">@breenmachine</a></p>http://securityreactions.tumblr.com/post/50657781707http://securityreactions.tumblr.com/post/50657781707Fri, 17 May 2013 12:07:23 -0400When you insert a whole bunch of stored XSS on pages you need to still test...<p>&#8230;and you cannot remove them</p> <p><img alt="image" height="373" src="http://3.bp.blogspot.com/-Cd3t-tecEOA/TnDVQiHX16I/AAAAAAAAAGo/dJSZCb_OVZA/s1600/FightClubPunch.gif" width="393"/></p> <p>by<a href="https://twitter.com/R_Ohh_bee"> @R_Ohh_bee</a></p>http://securityreactions.tumblr.com/post/50498488194http://securityreactions.tumblr.com/post/50498488194Wed, 15 May 2013 11:00:19 -0400The feeling you get when you publish your very first advisory <p><img src="http://i.imgur.com/AJ8lb29.gif"/></p> <p>by <a href="https://twitter.com/robertauger">@robertauger</a></p>http://securityreactions.tumblr.com/post/50498344853http://securityreactions.tumblr.com/post/50498344853Wed, 15 May 2013 10:57:04 -0400"We'll need you to treat this compliance request with care."<p><img src="http://i.imgur.com/60niDf1.gif"/></p> <p>by scrap</p>http://securityreactions.tumblr.com/post/50419803224http://securityreactions.tumblr.com/post/50419803224Tue, 14 May 2013 10:02:41 -0400Coming up against an XSS blacklist filter on a pentest<p><img alt="image" src="http://i.imgur.com/RBm5SlA.gif"/></p> <p>by <a href="https://twitter.com/integrisec">@integrisec</a></p>http://securityreactions.tumblr.com/post/50419231697http://securityreactions.tumblr.com/post/50419231697Tue, 14 May 2013 09:49:05 -0400Upper management sees my proposed infosec budget for next year <p><img alt="image" height="350" src="http://i.imgur.com/d7sQtDg.gif" width="263"/></p> <p>by <a href="https://twitter.com/joshdustin"><span>@joshdustin</span></a></p>http://securityreactions.tumblr.com/post/50091135681http://securityreactions.tumblr.com/post/50091135681Fri, 10 May 2013 10:53:56 -0400DLP<p><img src="http://i.imgur.com/T7kNVTW.gif"/></p> <p>by <a href="https://twitter.com/modalexii"><span>@modalexii</span></a></p>http://securityreactions.tumblr.com/post/50091088474http://securityreactions.tumblr.com/post/50091088474Fri, 10 May 2013 10:52:54 -0400"We don't need a preprod environment"<p><img src="http://i.imgur.com/GtDiW6C.gif"/></p> <p>by lol</p>http://securityreactions.tumblr.com/post/50012770196http://securityreactions.tumblr.com/post/50012770196Thu, 09 May 2013 10:13:03 -0400When I see an outward-facing process running on root<p><img src="http://i.imgur.com/YTP2iSV.gif"/></p> <p>by Andreus</p>http://securityreactions.tumblr.com/post/50012671477http://securityreactions.tumblr.com/post/50012671477Thu, 09 May 2013 10:10:45 -0400My reaction when I see prod and test on the same server<p><img alt="image" height="230" src="http://i.imgur.com/j17loBb.gif" width="320"/></p> <p>by <a href="https://twitter.com/surbo">@surbo</a></p>http://securityreactions.tumblr.com/post/49941636135http://securityreactions.tumblr.com/post/49941636135Wed, 08 May 2013 12:56:36 -0400"This application is written in Classic VB"<p><img src="http://i.imgur.com/ysIM1hg.gif"/></p> <p>by <a href="https://twitter.com/aloria">@aloria</a></p>http://securityreactions.tumblr.com/post/49929229668http://securityreactions.tumblr.com/post/49929229668Wed, 08 May 2013 08:20:40 -0400Smashing The Stack For Fun And Profit, Phrack 49 (Aug 1996)<p><img alt="image" height="240" src="http://i.imgur.com/cbYsVKe.gif" width="352"/></p> <p>by <a href="https://twitter.com/joshdustin">@joshdustin</a></p>http://securityreactions.tumblr.com/post/49858812495http://securityreactions.tumblr.com/post/49858812495Tue, 07 May 2013 11:37:50 -0400When they told me project managers could do security reviews based on a checklist<p><img alt="image" height="352" src="http://i.imgur.com/zs8kOov.gif" width="374"/></p> <p>by anonymous submission</p>http://securityreactions.tumblr.com/post/49858789973http://securityreactions.tumblr.com/post/49858789973Tue, 07 May 2013 11:37:22 -0400