Nigel Sheridan-Smith wtfiwtz

Dynamic Dispatch
Dynamic Method
Ghost Methods
Dynamic Proxies
Blank Slate
Kernel Method
Flattening the Scope (aka Nested Lexical Scopes)
Context Probe
Class Eval (not really a 'spell' more just a demonstration of its usage)
Class Macros

Outline

The purpose of this postmortem is to:

Provide an explanation of how the event happened, as the organisation best understands it.
Produce artifacts (recommendations, remediations) for prevention and improvement of detection and response approaches for handling similar future events.

Only by coming to an mutually agreeable explanation together, can we start to produce recommendations and remediations that help all of us in the future.

Whenever we talk about events that happened in the past, we need to be aware of two key cognitive biases that taint our perception of events:

Commit Message Conventions

These rules are adopted from the AngularJS commit conventions.

Goals
Generating CHANGELOG.md
- Recognizing unimportant commits
- Provide more information when browsing the history
Format of the commit message
Subject line

	module CarrierWave
	module MiniMagick
	# Rotates the image based on the EXIF Orientation
	# According to http://jpegclub.org/exif_orientation.html
	def auto_orient
	manipulate! do \|image\|
	case image['EXIF:Orientation'].to_i
	when 2
	image.flop
	when 3

	# /dev/alias Pentest Environment Setup
	# Version: 0.2 (20131211)
	# Created By: Glenn 'devalias' Grant (http://devalias.net)
	# License: The MIT License (MIT) - Copyright (c) 2013 Glenn 'devalias' Grant (see http://choosealicense.com/licenses/mit/ for full license text)

	# TODO:
	# * Option to check if tools (from this script and external) exist/are already installed and what versions
	# * Eg nmap , metasploit, etc
	# * Lair: https://github.com/fishnetsecurity/Lair
	# * apt-get install python-pip

	#!/bin/sh

	# COPY of http://pastebin.com/zC9HU2pU
	# Do elasticsearch optimize on logstash previous day index
	# if $1 = all then optimize all indicies

	esindex="/opt/elasticsearch/data/elasticsearch/nodes/0/indices"
	# Grab yesterday's values
	D=`date +%d -d yesterday`
	M=`date +%m -d yesterday`

	"UserData": {
	"Fn::Base64": { "Fn::Join":["", [
	"#!/bin/bash -ex\n",
	"apt-get update\n",
	"apt-get -y install python-setuptools\n",
	"mkdir aws-cfn-bootstrap-latest\n",
	"curl https://s3.amazonaws.com/cloudformation-examples/aws-cfn-bootstrap-latest.tar.gz \| tar xz -C aws-cfn-bootstrap-latest --strip-components 1\n",
	"easy_install aws-cfn-bootstrap-latest\n",
	"/usr/local/bin/cfn-init --stack ", { "Ref":"AWS::StackName" }, " --resource WebServer", " --region ", { "Ref": "AWS::Region" }, "\n",
	"\n",

	--log_gc (Log heap samples on garbage collection for the hp2ps tool.)
	type: bool default: false
	--expose_gc (expose gc extension)
	type: bool default: false
	--max_new_space_size (max size of the new generation (in kBytes))
	type: int default: 0
	--max_old_space_size (max size of the old generation (in Mbytes))
	type: int default: 0
	--max_executable_size (max size of executable memory (in Mbytes))
	type: int default: 0

	#!/bin/bash
	sudo apt-get update
	sudo apt-get -y install linux-image-extra-$(uname -r)
	sudo sh -c "wget -qO- https://get.docker.io/gpg \| apt-key add -"
	sudo sh -c "echo deb http://get.docker.io/ubuntu docker main\ > /etc/apt/sources.list.d/docker.list"
	sudo apt-get update
	sudo apt-get -y install lxc-docker

	require 'rails_helper'

	RSpec.describe TodosController, :type => :controller do

	describe "GET #index" do
	#describe "POST #create" do
	#describe "GET #show" do
	#describe "PATCH #update" do (or PUT #update)
	#describe "DELETE #destroy" do
	#describe "GET #new" do