Code of conduct

As a member of the SecAtScale community, you must abide by the code of conduct, failure to do so will result in appropriate enforcement relevant to the offense.

General rules

Keep conversations SFW (Safe for work). This is an professional environment, be sure that your words do not offend or make other members uncomfortable. Keep it civil. Discrimination of any kind is not tolerated and will be met with punishment accordingly. Observe boundaries, trolling and banter is fun within reason, ensure that you respect people’s boundaries. Respect all members, regardless of personal characteristic. Respect the privacy of other members.

Promotion, lobbying and commercial prospecting are prohibited. No excessive self promotion. Linking to another Slack organization is strictly prohibited. Don’t turn it into advertising.

No spamming, please. This includes excess repeating of the same messages (typically from five upwards, however, staff reserve the right to further judgement in these cases).

Please be courteous, listen to what people have to say, disagree respectfully (with a good reason) if you think they are incorrect, and overall treat people the way you would want to be treated.

Administrators reserve the right to modify the rules at any time and extend them accordingly to cover infractions which may not be currently included in these rules.

Ethical hacking rules

Everything we do must positively impact security of a person, business or organisation, we must teach and help others remain safe and secure online.

Respect all relevant laws when engaging in security related activities, do not engage in any unlawful activities without strict permission from the system or network owners. The privacy and the security of your information are important to us. Do not post sensitive information relating to a person or an organization (remind this could place them in danger). Respect the GDPR laws. Do not disclose individually identifiable information.

All IOCs should be shared in a safe manner ensuring they do not post as a hyperlink as this could put members in danger if navigated to.

Any take down operations must be performed with the highest respect of laws, all collected evidence must be true and presented to the relevant owners of systems and networks at the earliest opportunity, if necessary report it to the relevant law enforcement bodies.

No discussion of illegal/unethical topics or actions. If the target device doesn’t belong to you, and you don’t have specific permission to perform an attack from the owner of the target: you don’t do it, and we don’t talk about it. This also applies to software licenses / copyright violations. If in doubt, please ask an administrator before posting your message. Whether an action is illegal or not is at the sole discretion of the moderation team.

Do not post viruses or malicious files without explicit permission from the administrative staff. We understand that this is a Slack for learning, however, there are plenty of places online to get malware for forensic examination and reverse engineering. No distribution of illegally obtained materials within the Slack.

As Always, Stay safe, secure and vigilant