Powershell CGI scripts 
nyanbinary
@nyanbinary@infosec.exchange
Little goblin with catears.
Unfinished projects, complaining about computers, reinventing the wheel (badly), has not fully read any docs since 2015.
Proud bot parent to four failsons:
@enojifier_bot
@dreizehnzwoelf_bot
@perfect10_bot
@dotdotslash_bot
Testimonials:
"not helpful" @LucasWerkmeister
All my opinions are that of my employer but they don't know it yet & I am not telling you were I work. Apropos: If you need some idiot to kick computers for purposes of making them secure hmu, this job fucking sucks (vulnerability management, automation/engineering for your soc/isrt, ...).
PFP by a lizard that I am pretty sure transitioned at some point but I kinda lost contact with around the same time so I might only know their deadname & at this point it's too awkward to seek them out & ask. So instead I am going to credit them by their last discord handle I am aware of: fuck, md
- Languages
- German, English
- Pronomen (🇩🇪)
- egal
- Pronouns (🇬🇧/🇺🇸)
- name reference > they/it > whatever
Replying to @sharkfie@infosec.exchange
@sharkfie ok, but like, the question still is: Who/how is this linkage connected.
Lets take 26. as an example:
According to Microsoft records, on or about May 12, 2025, at 19:21 UTC—when, according to ngrok records, the ngrok account was created—the device with the GDID accessed, among other ngrok pages, “https://dashboard.ngrok.com/signup,” the ngrok page to set up an ngrok account.
ngrok isn't MS & afaik isn't even Azure-hosted. I'm trying to look for a way that MS still would be able to know about the page visit for the device ID without just pulling non-anonymized browsing data from device, lmao.
Replying to @sharkfie@infosec.exchange
@sharkfie the big question I have here (and which I couldnt find docs on during a cursory search) which none of this reporting mentions is how/when/where the device ID is collected?
Like, sure, a device ID is a thing, who cares. Where the fuck is the Activity<->ID link collected??
Replying to @darfplatypus@infosec.exchange
@darfplatypus about as real as my paycheck 
Why is Monday 
Replying to @nyanbinary@infosec.exchange
...what if we put the NTDS on a fileshare :3
Replying to @theresnotime@fox.nexus
@theresnotime wait but you dont take fall damage in the railca... oooohhhhh 
Me: Lets quickly spin up an AD environment from scratch to test something
Microsoft, hours later:
Time go grab yet another Windows Server evaluation copy as Contoso Ltd. :3
Replying to @nyanbinary@infosec.exchange
(ignore my post complaining about fedora, they are actually good beans)
Replying to @nyanbinary@infosec.exchange
wait, one sec...
Replying to @nyanbinary@infosec.exchange
also kinda fuck fedora for robots.txt allowing crawls with a high delay (10s, lmao) & then you get hit with anubis anyway, why do I even bother reading & following your robots.txt
cuck floudclare etc
Replying to @xenontechs@infosec.exchange
@xenontechs wish I had a cat to squish 
spends a lot of fucking effort to make this program parallelized
adds so many optimizations to avoid repeating subtasks
now it's quick enough I don't need the parallelization anymore
fuck
Cleaning up some unused packages on this client, lets see if it dies 😌
Gnarf, this project was a mistake, its making me consider using Python object oriented features & switching away from basic vim as my editor of choice...
TumblrKitto PaintHappy USA explosion day