Florian

zersiax@infosec.exchange

I'm a fully blind (== no sight whatsoever) cybersecurity enthusiast wanting to learn more. Mostly interested in #penTesting and overall #redTeaming, I learn on expanding my knowledge and figuring out a set of tools, a curriculum and a methodology that works well for the demographic I am a part of, one I am intending to document as I go along, through talks, streams and blog posts.
Be it figuring out if the #OSCP process is #accessible, to how to get that pesky #bufferOverflow method down, these are the things i work on figuring out as I go through sources like #tryHackMe and friends :)

ActivityPub

Florian

1 day ago

Florian
1 day ago

The similarities between #accessibility and #cybersecurity continue to amaze me.
These are both areas of standards, recommendations, legal precedents etc. that SHOULD, in theory, give companies the tools, as well as the insentive, to do what their clients/customers need them to do.
Is that the reality? Sadly, often, no it isn't. I just saw a renowned voice in the cybersecurity space repost a post that essentially states that if the infraction is cheaper/more lucrative than the fine, companies will choose the fine every single time. Frustrating, innit?

So what if I say the exact same thing is true for #accessibility and that the majority of GUI-based cybersecurity tools are not #accessible enough to be productive?

Here's a callout to #cybersecurity vendors. Are you going to fix this, or be a hypocrite? :) #tech

reshared this

in reply to Florian

Zach Bennoui

in reply to Florian 1 day ago

This is actually good to know as I was thinking about switching my major from CS to cyber, don't think I'll do so anymore, though. I like CS fine, and I'm doing well, at least according to all my professors lol, but I find the theoretical stuff not super interesting.

in reply to Zach Bennoui

Florian

in reply to Zach Bennoui 1 day ago

@ZBennoui Oh it's perfectly doable with a bit of elbow grease I would say. A lot of tools are commandline which, while not necessarily efficient out of the box, does dodge around some of the UI issues, and yet others are web-based which means one can get quick at them with a bit of practice, but there's also scary Legacy Java UIs that ...kinda work but are not exactly pleasant to use. I'd say if youre not passionate about it you probably won't have a great time, but if you are, it is certainly learnable/doable and quite fun once you get good at it :)

@Zach Bennoui

⇧

Florian

Florian 1 day ago • •

Zach Bennoui

Florian

Florian
1 day ago