Alexander Kot

@Alex_S_Kot

Thoughts are my own and not of my employer.

Vrijeme pridruživanja: listopad 2012.

Tweetovi

Blokirali ste korisnika/cu @Alex_S_Kot

Jeste li sigurni da želite vidjeti te tweetove? Time nećete deblokirati korisnika/cu @Alex_S_Kot

  1. proslijedio/la je Tweet
    prije 12 sati

    Finally, a new video is up on YouTube! Today we learn how easy to detect and some tricks that could help you in your work. More interesting videos coming soon, will appreciate your support and subscription to the channel.

    Poništi
  2. proslijedio/la je Tweet
    4. velj

    Couple of questions: 1. If you are using ELK, Winlogbeat and Sysmon, how many systems are feeding Sysmon into your ELK instance? And.. 2. Which (if any) Sysmon config did you use as a base config?

    Poništi
  3. proslijedio/la je Tweet

    If Microsoft Teams is down for you... Remember it's Office *365* and there are 366 days in 2020.

    Poništi
  4. proslijedio/la je Tweet
    2. velj

    My Sysmon config sees the shell/open reg key being written, if you want to alert on this. /cc

    Prikaži ovu nit
    Poništi
  5. proslijedio/la je Tweet
    2. velj
    Poništi
  6. proslijedio/la je Tweet
    1. velj

    For anyone wondering, yes it’s written in C# and yes I will be totally adding it as a SILENTTRINITY module if I can get the source code (a few changes need to be made in order for it to run in memory).

    Prikaži ovu nit
    Poništi
  7. proslijedio/la je Tweet
    28. sij

    Here are the top 5 manager/org factors I see holding analysts back: - Lack of critical data sources - No culture of learning - Poor relationships with IT teams - Misaligned manager/analyst priorities - Too much managerial capitulation to strong personalities 2/

    Prikaži ovu nit
    Poništi
  8. proslijedio/la je Tweet
    28. sij

    The unfortunate part about these things is most managers know and acknowledge them. They just pass the buck and make excuses. It's a lack of ownership and everyone suffers. But, here's the thing... 3/

    Prikaži ovu nit
    Poništi
  9. proslijedio/la je Tweet
    28. sij

    That lack of ownership often ends up boiling down to a manager who doesn't trust themselves. It'll appear as though they don't trust the analysts, but that's an abstraction. They probably hired the analysts after all. 4/

    Prikaži ovu nit
    Poništi
  10. proslijedio/la je Tweet
    28. sij

    The best SOCs I see have managers who hold themselves to high standards and provide opportunities to let others rise to those same standards. It's a shame that's so rare. 5/

    Prikaži ovu nit
    Poništi
  11. proslijedio/la je Tweet
    28. sij

    DOJ charges Chinese citizen for "attempting to smuggle 21 vials of biological research to China" Also charges US citizen with ties to the "Wuhan University of Technology (WUT)" I CAN'T WAIT TO HEAR ALL YOUR CORONAVIRUS CONSPIRACY THEORIES! HURRY UP!!!

    Poništi
  12. proslijedio/la je Tweet
    29. sij

    Commands to image Netscaler device: dd if=/dev/md0 | gzip -1 - | ssh user@[IP address] dd of=/[fullpath]/md0.gz
dd if=/dev/ad0s1a | gzip -1 - | ssh user@[IP address] dd of=/[fullpath]/ad0s1a.gz
dd if=/dev/ad0s1b | gzip -1 - | ssh user@[IP address] dd of=/[fullpath]/ad0s1b.gz

    Prikaži ovu nit
    Poništi
  13. proslijedio/la je Tweet
    Odgovor korisniku/ci

    Baron Von Soy

    Poništi
  14. proslijedio/la je Tweet
    28. sij

    Wish more ISACs shared via MISP rather than commercial TIPs or email distros.

    Poništi
  15. proslijedio/la je Tweet
    27. sij

    It's not your technical capability holding you back. It's accountability.

    Poništi
  16. proslijedio/la je Tweet
    25. sij

    Next time that I discover a really dangerous virus strain I'll show how to build, use, modify and spread it on a medical conference so that everyone in the world understands its seriousness and learns how to prepare themselves better in case some bad guy does the same ☝️

    Poništi
  17. proslijedio/la je Tweet
    24. sij

    Just arrived today ! 🤩🤩🤩 Thanks ! NetWars Tournament of Champions 2019 was a great experience ! Many thanks to , , , , , , , !

    Poništi
  18. proslijedio/la je Tweet
    24. sij

    Slowly coming off a couple investigations and gotta shout out and particularly for the amazing info they put out on these attacks. It's been invaluable!

    Poništi
  19. proslijedio/la je Tweet
    23. sij

    Pro tip: Security means you’re concerned about bad things happening to your data. Compliance means you’re concerned about auditors happening to your data.

    Poništi
  20. proslijedio/la je Tweet
    22. sij

    Despite its incredible security enhancements, PowerShell continues to be abused by adversaries. A strong knowledge of PowerShell enables defenders to effectively manage and respond to its abuse. (1/4)

    Prikaži ovu nit
    Poništi

Čini se da učitavanje traje već neko vrijeme.

Twitter je možda preopterećen ili ima kratkotrajnih poteškoća u radu. Pokušajte ponovno ili potražite dodatne informacije u odjeljku Status Twittera.

    Možda bi vam se svidjelo i ovo:

    ·