braedach.com - Always Learning

braedach.com - Always Learning

Sign in Subscribe

Australia's Digital ID system

Australia's Digital ID system

It's a load of bollocks There is not a single solution for positive identification to be found. You have the official federal DigitalID application and then there is the Aus post solution and then there is the numerous times you have to deal with banks, labour hire companies,

🚀 Telstra’s Aura Fibre: Building Australia’s AI‑Era Backbone

🚀 Telstra’s Aura Fibre: Building Australia’s AI‑Era Backbone

“From gigabits to terabits: Telstra’s Aura network is laying the tracks for Australia’s AI economy. With 14,000 km of dual‑path fibre, 83 Tbps capacity, and $29b in projected GDP uplift, this is more than a network — it’s the backbone of our digital future.” Australia is

📚 Booklore Review: My eBook Library with Self‑Hosting

📚 Booklore Review: My eBook Library with Self‑Hosting

For years, I’ve wanted a Jellyfin‑like experience for my eBooks—a clean, modern interface that lets me browse, organize, and actually enjoy my digital library without being locked into Amazon’s walled garden. Enter Booklore: a self‑hosted eBook server that feels like the missing piece in my

Radware Threat map

Radware Threat map

Think the world is cute and cuddly well it isn't. Hot wars are becoming very prominent lately but for those in the cybersecurity business whether as professional (on the front lines) or more the remote type (WTF - no way), they are not. This sort of devious crap

🚀 Adventure Log: Implementation

🚀 Adventure Log: Implementation

I am going on adventures with the minister of home affairs, finance and war I had this going some time ago, but well things evolve, updated Proxmox server, the release of Debian Trixy and I keep changing how I implement my services - well not sort of - I use

Email Security - Review

Email Security - Review

I thought I had this all shut up nice and tight Received email from garbage source - the usual click bait Threw it at a few forensic tools and AI - here is the result - if you use any sort of email, you can usually get access to the

The Qantas hack & you

The Qantas hack & you

The following information is from the ABC Hackers have released Qantas customer data onto the dark web, realising the fears of millions of affected Australians who were first alerted to the significant cybersecurity incident in July What can you do if your Qantas data has hit the dark web?Hackers

How Attackers Bypass Synced Passkeys

How Attackers Bypass Synced Passkeys

The following is in relation to synced passkeys Even if you take nothing else away from this piece, if your organization is evaluating passkey deployments, it is insecure to deploy synced passkeys How Attackers Bypass Synced PasskeysSynced passkeys expose enterprises to cloud takeover, browser hijacks, and downgrade attacks.The Hacker

Project N8N - Thoughts & Ideas

Project N8N - Thoughts & Ideas

Beginning to build up ideas. Need to be familiar with this tool and its capabilities Let’s break it down into practical, modular workflows you can build in n8n: 🔧 Core Capabilities You Can Automate with n8n 1. Network Maintenance (Ubiquiti + Proxmox) * Ubiquiti API integration: n8n can poll UniFi Controller/UDM

Windows Group Policy

Windows Group Policy

Research, and more research Windows attack patterns in the last 12 months and local GPO defenses Attackers have leaned hard on abusing Group Policy as a distribution and control layer for malware, scripts, and ransomware. The core pattern is: gain a foothold, live off the land, escalate, then use GPO

Chinese hackers targeting remote workers

Chinese hackers targeting remote workers

Not the least bit surprised - I see 600 of these a day Chinese hackers targeting remote workers in Australia through Wi-Fi routers, VPNsThe technology of remote workers is being targeted by Chinese hackers to try and infiltrate corporate syste…9NewsRichard Wood "State-sponsored cyber actors have also compromised home

MCP stacks have a 92% exploit probability

MCP stacks have a 92% exploit probability

This is going to be a problem The same connectivity that made Anthropic's Model Context Protocol (MCP) the fastest-adopted AI integration standard in 2025 has created enterprise cybersecurity's most dangerous blind spot. https://venturebeat.com/security/mcp-stacks-have-a-92-exploit-probability-how-10-plugins-became-enterprise Recent research from Pynt quantifies the growing threat in

Asahi - Cybersecurity badly

Asahi - Cybersecurity badly

A case example of cybersecurity done poorly. Wish the article contained more details, so I will have to do some research when I get back to civilization to learn more. Details at bottom of the post are AI generated - saves hours of searching - its also wrong. This is

Windows PsExec Can Be Abused to Execute Malicious Code

Windows PsExec Can Be Abused to Execute Malicious Code

Now this just gives me the shits. There is a standard defense for this in Windows ASR (Attack Surface Reduction) that anybody who has Windows Professional or higher can apply. I know it works because I have tested my pen testing skills this way. How Windows Command-line Utility PsExec Can

Australian Made & Deployed

Australian Made & Deployed

Remember the term "Australia - the clever country", well it looks like the current state of world affairs is spurring our intellectual might into end results. Here is one example and there have been considerably more than one, it just takes - so damn long - to get

Cloudflare's Vibe-SDK

Cloudflare's Vibe-SDK

Yeah baby - on the ever-expanding to-do list Source: GitHub - cloudflare/vibesdk: An open-source vibe coding platform that helps you build your own vibe-coding platform, built entirely on Cloudflare stackAn open-source vibe coding platform that helps you build your own vibe-coding platform, built entirely on Cloudflare stack - GitHub

Proxmox VE - The right way

Proxmox VE - The right way

Here is a brilliant post by Brandon Lee on how to setup Proxmox It is well worth the read How to Run Docker on Proxmox the Right Way (and Avoid Common Mistakes)Learn how to run Docker on Proxmox the right way, avoid common setup mistakes, and optimize networking, storage,

Windows 25H2 - Approaching

Windows 25H2 - Approaching

Apparently, Microsoft are getting ready to deploy the new version If you are already running 24H2, you will see it appear in the Windows Update notifications as a feature enablement update. Installation will not take long due to the way the feature enablement update works and likely will simply require

Quantum sensing can secure Australia’s future

Quantum sensing can secure Australia’s future

Interesting Quantum sensing can secure Australia’s future, today | The StrategistAustralia has world-class quantum talent. But without testbeds, procurement pathways and clear missions, that promise won’t translate into capability. While Australia has clear strengths in quantum computing, it will be a long-term undertaking, though one…The StrategistRajiv Shah So,

Axelera Metis M.2 Max Edge AI module

Axelera Metis M.2 Max Edge AI module

Oh baby, more research required The new Metis M.2 Max also offers a slimmer profile, advanced thermal management features, and additional security capabilities. It is equipped with up to 16 GB of memory, and versions for both a standard operating temperature range (-20°C to +70°C) and an

6 Degrees of Separation

6 Degrees of Separation

Watched this last night with the wife. The beautiful math behind six degrees of separation Really interesting stuff on networks, which is right down my alley. More information here Six degrees of separation is the idea that all people are six or fewer social connections away from each other. As

Jane Goodall - RIP

Jane Goodall - RIP

There goes another remarkable woman. Jane Goodall, who gave chimps their souls back, dead at 91British primatologist Jane Goodall entered the African wilderness at 26 years old without any formal scientific training or university degree. She emerged with research that forever changed how we understood the animal kingdom.ABC NewsMBy

The IP Host heatmap

The IP Host heatmap

I was looking for a heatmap of the amount of IP addresses per country. I had an old one that I dug up somewhere and stuck in my ghost image library. I pull this server up and down quite a bit, but for the moment it can live in Frankfurt,

EDR Freeze - GPO Defense

EDR Freeze - GPO Defense

Okay this may take a while. A discussion with an AI The following post is taken from here: New EDR-Freeze Tool That Puts EDRs and Antivirus Into A Coma StateA new proof-of-concept tool named EDR-Freeze has been developed, capable of placing Endpoint Detection and Response (EDR) and antivirus solutions into

Broaden the mind

Broaden the mind

No, I don't speak it. Like the song though. This one, interesting. #enoughsaid