You are not an idiot

21/05/2021
NorthSec
Or maybe we're just all idiots?
You are notan idiot
Ange Albertini

- Reverse engineering since 1989, Author of Corkami, File format expert.
- PoC or GTFO, Pwnie Award of Crypto 2017.
Professionally
- 13 years of malware analysis
- 3 years of Infosec Engineer at Google
About the author
my license plate is a CPU architecture.
my phone case is a PDF doc,
my resume is a Super NES/Megadrive rom.
My own views
and opinions.
2

This talk
- You might see me as successful (Google, Pwnie…)
- I kept seeing myself as an idiot - until very recently.
- Yet I’m still the same.
Why until now? Why not now?
Choose your ﬂavour:
- the slides are quite generic, the recording is more personal.
THE CURRENT SLIDE IS AN
A CORKAMI ORIGINAL PRODUCTION
HONEST TALK TRAILER
idiot?
3

Yet another
“success” speech ?
This talk is not about showing off my success.
Focusing on the basics.
Not necessary limited to Infosec.
Totally experimental. Unpopular opinions?
I'm obviously biased. I'm here to share & learn.
4

So many reasons to over-worry...
...and forget about yourself.
Infosec...
5
...or your friends.

- very repetitive tasks.
- uncertainty is exhausting.
- proﬁteers, abusers.
InfoSec is boring exhausting/harmful!
6

Infosec people are always wrong
- We’re the ones preventing projects to launch.
- We’re easily misunderstood.
We’re supposed to just have to “follow the manual”
like any other engineers.
- we discuss hypothetical attacks that never happened yet.
- we publish research that helps to create more attacks.
7

InfoSec and metrics
Security doesn't have easy metrics.
So defense is very political.
9

The pandemic certainly didn’t help...
10

But we’re a lot more than our work
- All your efforts in infosec are not worth it
if you burn out or commit suicide.
11

First mistakes...
12
You are not an idiot if… = Yanaii
It is normal and ok to… = Iinaot

There are different kinds of personality
It is normal and ok to be different!
13

Some people can’t learn without practice,
or without a genuine motivation.
Everybody is a genius. But if you judge a fish by its ability to climb a tree, it will
live its whole life believing that it is stupid. - Albert Einstein
Fake
Quote
You just can’t learn things magically
14
YANAII...
Story time

Find your own!
Story time 15
School usually provides a unique form of learning.

- We were all born “hackers”...
...then rules are enforced.
And now our work is full
of experimental failure.
School taught us that failure is not an option
16

Story time
You think your diploma was mostly useless
YANAII...
(basically job #0)
18

...is here to stay.
...just means that you are self conscious!
...is better than the Dunning-Kruger effect!
...can be bypassed: just help someone!
The impostor syndrome..
19
How good you think you are
How good you are
Impostor syndrome
(conscientious expert)
Dunning-Kruger effect
(shameless ignorant)

Some people are never satisﬁed...
- Arrogance
- Dunning Kruger effect
- Gatekeeping
20
YANAII...
Let me interrupt your expertise with my confidence.

No need to “reinvent the wheel”?
- why not ?
- just be honest and don’t present the idea as new.
- we still use cars, bikes, tools and bread.
21

-
Infosec
for
newbies
Just a different style
can make things click.
And a different style can reach different users!
We all had a bad teacher about something we love,
or a great teacher for a topic we usually hate.
We often forget that...
https://www.getdigital.de/Hacken-Open-Air-Shirt.html?her=BB
https://en.wikipedia.org/wiki/The_Manga_Guides
Story time 22

IINAOT feel stuck in a loop.
As opposed to school,which was creating differences every year.
Consistency is actually a good thing.
Take one small step after another...
23

Others can't always share your perspective.
- No, not even your closest friends/colleagues!
time
critics
Progress
"Weird" "New"
You want to try something different.
24
Story time
YANAII...

Don’t burn yourself trying to be perfect!
25

Focus on yourself ﬁrst!
Take breaks too!
26

27
You got it wrong so far!
YANAII...

Some people will take
the worst decisions...
Even against their own interests
or their friends’/family’s
Fears/traditions/ideologies
are sadly taken into account.
no matter how stupid they are:
sexism, racism, religion…
28

This is not an excuse to...
29

Attitude
It’s OK to be different,
but everyone has their limit
Story time 30

Be wary of bad habits.
“Respect” is not “authority”.
Try swapping roles!
31

Your past is no excuse!
It’s ok to be insecure. Not to be a jerk.
Story time 32

Nothing comes easy
- anything takes a long time to master.
- if you can still count how much you’ve tried,
it’s probably not much.
“The art of like twirling or doing tricks with a pen in a very appealing nice looking way.
Make it look like it's easy even though it takes like hours and hours and hours of practice.”
- LiveOverFlow
33
33

“How can I…”
Face it: if after [long enough], you never tried,
Then you were probably never actually interested ;)
And if you still hate it after X tries,
then be honest and move on ;)
Story time 34

You’re always doing it wrong?
No matter what, that person is never satisﬁed…
What if...you actually did nothing wrong?
And you’re just being manipulated…?
What if...
35

Ever heard of gaslighting?
Based on a play from 1938 - and a classic movie, now freely available.
36

37
Honey moon
Silence
Killer face
Asserting power
Faking

Any of these rings a bell ?
38
They make other people feel guilty, in the name of professional conscience, family ties, friendship, love, etc.
They unload their responsibilities onto others or dismiss their own responsibilities. / They do not clearly communicate their requests, needs, feelings or opinions.
They often respond vaguely. / They lie / They are self-centred. / They cite all kinds of logical reasons to disguise their requests.
They change their opinions, behaviours, or feelings depending on the person or situation. / They make veiled threats or openly resort to blackmail.
They make others believe that they must be perfect, never change their minds, always know everything, and immediately respond to requests and questions.
They cast into doubt the qualities, skills and personalities of other people—they criticize without appearing to do so, devalue and judge.
They have their messages communicated by other people or via intermediaries (telephone instead of face-to-face, written notes).
They create suspicion and stir up ill feeling; they divide to conquer, driving a wedge between people, which can lead to relationship break-ups.
They know how to make themselves into victims to gain sympathy (e.g. exaggerated illness, « difficult » surroundings, overloaded at work).
They ignore requests (even if they claim to be taking care of them). / They use ﬂattery to seduce us, give gifts or suddenly start waiting on us hand and foot.
They use the moral principles of others (e.g. notions of humanity, charity, racism, « good » or « bad » mother) to satisfy their needs.
They abruptly change topic in mid-conversation. / They avoid or get out of discussions and meetings. / They cannot take criticism, and deny facts.
They make false statements to discover the truth, twist and interpret facts to suit themselves. / They can be jealous, even if they are parents or spouses.
They do not take into account the rights, needs and desires of others. / They make us do things that we would probably not have done of our own free will.
They often wait until the last minute to ask, order or have others do something. / They rely on the ignorance of others while vaunting their own superiority.
Their words appear logical and consistent, while their attitudes, actions or lifestyle are totally opposite.
They generate a state of discomfort or of not being free (trap). / They are excellent at meeting their own goals, but at the expense of others.
They are constantly the focus of conversation among people who know them, even if they are not present.
by Isabelle Nazare-Aga
30 characteristics of manipulators

Manipulators...
...can be anyone.
...can change over time (very nice before, slowly worsening).
...may be painful to acknowledge as such
(huge denial to overcome the sadness).
39

What can you do against a manipulator?
Keep your distance! Preserve yourself!
A therapy may be impossible to undergo:
- authorities can easily be fooled.
- Proofs may be hard to ﬁnd.
40

41
Beware of those eager to “help”
- to “help”, but only according to their own terms (nodding, speaking…)
- ignoring your needs, but satisfy their expectations.

”…but I want to ﬁght back!”
You might lose yourself in an unfair and endless ﬁght.
Better be free than burning yourself out in vain.
Your second life begins when you realize you have only one.
42
“Never argue with an idiot. They will drag you down
to their level and beat you with experience.”
- Mark Twain

But why should we care?
We all worry about these… only because we can.
A question of time and priority.
So maybe, we’re still somehow idiots...
43

44
Stop giving a fxck.
There’s no end to your tunnel.
You’re the light.
Story time

You’re considering to commit suicide
But maybe (and more than you think):
- people care about you.
- they will be in pain.
46
Story time
YANAII...

Yes, maybe we’re all idiots
But why should you care ?
48

Hopefully you went
through similar experiences.
You may not be the only idiot.
49

Thank you!
Take care of yourself
50
Special thanks to:
Doegox , BarbieAuglend, Sally.

You are not an idiot

More Related Content

What's hot (8)

Similar to You are not an idiot (20)

More from Ange Albertini (20)

Recently uploaded (20)