evilstevie @evilstevie@mastod1.ddns.net

I made a dodecathedral

the endless frustration: hardware used to be cheap but I had no money, and now I do have money but hardware costs have disproportionately increased :(

Some hero renamed the White House on Google Maps as Epstein Island. Bless you, whoever you are.
Post reporters called the White House. Their phones showed ‘Epstein Island.’ https://www.washingtonpost.com/style/power/2026/03/27/white-house-google-database-epstein/

“I need to discuss science vs. engineering. Put glibly:

In #science if you know what you are doing you should not be doing it.
In #engineering if you do not know what you are doing you should not be doing it."

― Richard Hamming, "The Art of Doing Science and Engineering: Learning to Learn" (1997)

In today's episode of "Can It Run Doom": DNS fucking TXT records.

Some absolute madlad (cough Adam Rice cough) compressed the entire shareware DOOM WAD, split it into around 1,964 chunks, shoved them into Cloudflare TXT records, and wrote a PowerShell script that reassembles and runs the whole goddamn game from DNS queries alone. Nothing touches disk. The DLLs are in DNS. THE FUCKING DLLS ARE IN DNS.

RFC 1035 was written in 1987. Those engineers are spinning in their graves fast enough to generate municipal power.

Bonus: this is a fully functional globally-distributed covert data exfil channel that your NGFW will never fucking see if you're not doing deep DNS inspection. Sleep well.

blog: https://blog.rice.is/post/doom-over-dns/

repo: https://github.com/resumex/doom-over-dns

Also lmao @ every blue team that has never once looked at their DNS query volume. How's that DLP policy working out for you.

It was always DNS.

#infosec #dns #doom #itisalwaysdns

Camera glasses? Fuck off you creepy cunt.

Fun fact I made a typo in sysmon-config many years ago, when I was working in Helpdesk.

I got my shot and was hired to the big firm with the big fancy expensive tools I would've never dreamed of.

Do you know what I find in that tool, auditing it?

My typo. They pasted it in. They just... copied the whole thing.

I sit at my desk. And I realize I was always enough.

Everything has been uploaded and is pre-staged for PUSHING TO PROD today!!! GET READY!

#memes #TGIF #shitpost #catte

You did it! 🥳

European Parliament just decided that Chat Control 1.0 must stop.

This means on April 6, 2026, Gmail, LinkedIn, Microsoft and other Big Techs must stop scanning your private messages in the EU. #PrivacyWins 💪

"Shhh"

All shot practically using real lighting, figures and miniature sets. I used the old school Peppers Ghost trick to create this shot. I flipped the final image to replicate the movie aspect.

I've always wanted to do this shot & luckily managed to convince my friend to lend me his figure although he was reluctant 😂.

#photography #ghostbusters #miniatures #libraryghost #ghosts #library #toyphotography #uniqueart #actionfigurephotography #creativephotography #miniaturephotography #movies

"I grant you one wish," the magic fish said.

"To eat my mother's pancakes again, just like when I was a child."

"Are you sure?"

"You think it frivolous?"

"No. But to grant it I must send you back to the child you were, with no adult memories."

"Would my life change?"

"You ask that every time."

#TootFic #MicroFiction #SmallStories

Love to see that Virgin UK/O2 have blacklisted "http://detectportal.firefox.com/canonical.html" (the URL Ffox uses to invoke a captive portal, such as the ones you have to clear in order to use public hotspots with Virgin as a provider). Also nice to see that they've copyrighted the error page.

#KesslerSyndrome is coming, @evilstevie ! We need space janitors! @jonty

… I forgot to provide a link, didn't I? See, that's why I prefer to avoid relying on my own memory.

'xafter' is available from my miscellaneous utilities page (also including 'after' and lots of other unrelated things):
https://www.chiark.greenend.org.uk/~sgtatham/utils/

There's this myth that automated spam detection is hard because spammers are all very clever masters of disguise.

No. Spammers are stupid as a shoe. They have dog shit for brains.

Automated spam detection is hard because the line between spam and "legitimate" marketing activity is a fiction.

our house, in the middle of the street 🎶