Marcus Bakker

@Bakk3rM

Cyber Defence Expert | Cyber Security Addict ;-) | IT Security Advisor

Vrijeme pridruživanja: veljača 2014.

Tweetovi

Blokirali ste korisnika/cu @Bakk3rM

Jeste li sigurni da želite vidjeti te tweetove? Time nećete deblokirati korisnika/cu @Bakk3rM

  1. Prikvačeni tweet
    9. pro 2019.
    Poništi
  2. prije 19 sati
    Poništi
  3. proslijedio/la je Tweet
    28. sij

    New blog (and tool): Attacking Azure, Azure AD, and Introducing PowerZure

    Prikaži ovu nit
    Poništi
  4. proslijedio/la je Tweet
    2. sij

    Looking to get more conferences and events filmed, I'm working to assemble and distribute video additional rigs. Can you help me carry the cost? RT very much appreciated.

    Prikaži ovu nit
    Poništi
  5. 23. pro 2019.

    I've released an update on the KQL cheat sheet with several changes mostly based on feedback from others. Version 0.2 can be found here: Thank you to all who have provided feedback which is highly appreciated!

    Poništi
  6. 17. pro 2019.

    Version 1.2.6 of DeTT&CT is out which brings several new features. Among others, it's now possible to perform EQL searches on custom key-value pairs of a technique administration YAML file. Changelog:

    Poništi
  7. proslijedio/la je Tweet
    25. stu 2019.

    Want to classify process injection by Windows API calls? Check out the new poster made by and me!

    Poništi
  8. proslijedio/la je Tweet
    20. stu 2019.

    Introducing the Funnel of Fidelity, a model to evaluate the efficacy of detection and response programs.

    Poništi
  9. proslijedio/la je Tweet
    20. stu 2019.
    Poništi
  10. proslijedio/la je Tweet
    15. stu 2019.

    I just published Man-in-the-Network: Network Devices are Endpoints too Special thanks to for his Sigma project, and to for the encouragement! I hope you integrate these changes to include Network devices as a platform.

    Prikaži ovu nit
    Poništi
  11. 6. stu 2019.
    Poništi
  12. proslijedio/la je Tweet
    5. stu 2019.

    We released DeTT&CT version 1.2.3 supporting the latest ATT&CK October update. This update includes the new cloud data sources and platforms. Check the changelog for more info:

    Poništi
  13. proslijedio/la je Tweet
    24. lis 2019.

    October ATT&CK update is now live! Lots of new information in Enterprise, Mobile, Groups, and Software. The biggest change is the addition of ATT&CK for Cloud! Thanks to all our contributors that helped with this update and with Cloud! Update notes:

    Prikaži ovu nit
    Poništi
  14. 23. lis 2019.
    Poništi
  15. 10. lis 2019.

    Yesterday I gave a talk on the TaHiTI Threat Hunting Methodology together with Rob van Os at the Security Congress. - The slides of the talk can be found here: - Previously written blog post on TaHiTI:

    Poništi
  16. proslijedio/la je Tweet
    4. lis 2019.

    This was a fun one. Upon documenting the process of identifying AMSI components, fastprox.dll showed up (a core WMI component) which I was completely unaware of. Really cool to see MS continually improve detection optics in response to attacker tradecraft!

    Prikaži ovu nit
    Poništi
  17. proslijedio/la je Tweet
    4. lis 2019.

    Antimalware Scan Interface Detection Optics Analysis Methodology: Identification and Analysis of AMSI for WMI

    Prikaži ovu nit
    Poništi
  18. 2. lis 2019.

    Posted a new blog to share my knowledge on how to integrate into your Python tooling. Example code is included in the blog and on GitHub. Blog: GitHub:

    Poništi
  19. proslijedio/la je Tweet
    1. lis 2019.

    Examining access token privileges with Microsoft Defender ATP + Kusto and why this can be interesting from a blue team perspective. @WindowsATP

    Poništi
  20. proslijedio/la je Tweet
    19. ruj 2019.

    Happy to release the Threat Hunting with ETW events and  series! Part I: 🏄‍♀️🏄‍♂️ Installing SilkETW to consume events via the event log locally is out! Next, Shipping events to 😱 Thank you ⚔️

    Poništi

Čini se da učitavanje traje već neko vrijeme.

Twitter je možda preopterećen ili ima kratkotrajnih poteškoća u radu. Pokušajte ponovno ili potražite dodatne informacije u odjeljku Status Twittera.

    Možda bi vam se svidjelo i ovo:

    ·