HackerTrans
トップ新着トレンドコメント過去質問紹介求人

sysdesautopsy

no profile record

投稿

Show HN: A Ring-0 deployment safety checklist(derived from CrowdStrike analysis)

github.com
1 ポイント·投稿者 sysdesautopsy·6 か月前·1 コメント

[untitled]

1 ポイント·投稿者 sysdesautopsy·6 か月前·0 コメント

[untitled]

1 ポイント·投稿者 sysdesautopsy·6 か月前·0 コメント

コメント

sysdesautopsy
·6 か月前·議論
OP here.

I put this checklist together after digging into the CrowdStrike "Channel File 291" crash. Basically just tried to map out the specific gates (like N-1 validation and negative fuzzing) that actually would have caught the bug before it hit prod.

If anyone is interested in the visual breakdown of how the failure propagated, I recorded an analysis here: https://www.youtube.com/watch?v=D95UYR7Oo3Y

Curious what other hard gates you folks use for kernel/driver updates.
sysdesautopsy
·6 か月前·議論
Change HealthCare also faced $22M ransomware attack due to missing MFA.