Tweetovi
- Tweetovi, trenutna stranica.
- Tweetovi i odgovori
- Medijski sadržaj
Blokirali ste korisnika/cu @Cyb3rWard0g
Jeste li sigurni da želite vidjeti te tweetove? Time nećete deblokirati korisnika/cu @Cyb3rWard0g
-
Prikvačeni tweet
I decided to write a book
! An online Interactive Book
! A book on the top of @HunterPlaybook ,@ProjectJupyter#notebooks and w/@mybinderteam BinderHub links all put together w/ the amazing Jupyter Book project!#ThreatHunting Merry Christmas
https://medium.com/threat-hunters-forge/writing-an-interactive-book-over-the-threat-hunter-playbook-with-the-help-of-the-jupyter-book-3ff37a3123c7 …Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Roberto Rodriguez proslijedio/la je Tweet
Have you looked at the Notebook features in
#AzureSentinel but wanted to know more? Check out this deep dive of our#Linux Host Explorer Notebook to understand what it is doing and how to use it:https://techcommunity.microsoft.com/t5/azure-sentinel/explorer-notebook-series-the-linux-host-explorer/ba-p/1138273 …Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Oh and all from my phone

! No excuses 
I'm so happy I can use open tools and Infrastructure to share resources with the community. Thank you @mybinderteam@ProjectJupyter and@OSSEM_Project teams to make it all possible
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Someone asked how easy or practical it was to use the
#notebook I shared earlier
1. Click on the @mybinderteam link
https://mybinder.org/v2/gh/hunters-forge/OSSEM/yaml?filepath=query_winetw_providers.ipynb …
2. Wait for Binder to launch the @OSSEM_Project Jupyter server
(Free. Open Infrastructure)
3. Run every #notebook cell and
pic.twitter.com/KdrX0G0iOJ
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Roberto Rodriguez proslijedio/la je Tweet
The CFP for fwd:cloudsec is now open! Details at https://fwdcloudsec.org Also we've got a logo, so finally we can start handing out stickers soon.pic.twitter.com/Qz0sRsMhFq
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Has anyone (boss, client, student, etc) ever asked you in what Windows event log can you find a process, IP address, InterfaceUuid, etc? Very helpful to identify providers that you might need to start collecting data from.
@OSSEM_Project is using online interactive#notebookshttps://twitter.com/OSSEM_Project/status/1223299303734759426 …Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Roberto Rodriguez proslijedio/la je Tweet
New OSSEM updates are coming soon and some of the work being tested is the following: 1. Events from all manifest-based and mof-based ETW providers from several Windows 10 versions (Ref: https://github.com/jdu2600/Windows10EtwEvents …) as JSON: https://github.com/hunters-forge/OSSEM/tree/yaml/data_dictionaries/windows/etw/json … YAML: https://github.com/hunters-forge/OSSEM/tree/yaml/data_dictionaries/yaml/windows …
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
That's awesome! Thank you for sharing
@troplolBE ! Happy to see the projects being referenced in other conferences around the
I hope to make it to @FIC_eu one day
https://twitter.com/troplolBE/status/1222834617914478592 …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Looking forward to it
@ConvergeDetroit ! Thank you for the opportunity
can't wait to share a few initiatives to share and collaborate more with the community 
https://twitter.com/ConvergeDetroit/status/1222897255373508608 …Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Roberto Rodriguez proslijedio/la je Tweet
Con el Master
@Cyb3rWard0g filosofando acerca de cybersecurity ! Faltaron unos cuantos amig@s@d4v3c0d3r@darkslaker@plugxor@fierytermite@goaudax@33root@Cyb3rPandaHpic.twitter.com/RdEnWEWdwW
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Roberto Rodriguez proslijedio/la je Tweet
#BlueTeam command-line MSBuild.exe detection's got your#RedTeam down? How about MSBuild without MSBuild.exe? https://s5.gifyu.com/images/msbuild_api.gif …https://github.com/rvrsh3ll/MSBuildAPICaller …Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Roberto Rodriguez proslijedio/la je Tweet
Okay here it is, Zipper a new
@OutflankNL file and folder compression utility for CobaltStrike. Blue Teams/Hunters/Defenders: Lookout for non file-compression related processes creating (random named) zipfiles within temp folders.https://github.com/outflanknl/Zipper …Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Roberto Rodriguez proslijedio/la je Tweet
Hunting in Sentinel is now in public preview so you can get started with livestream sessions and check it outhttps://docs.microsoft.com/en-us/azure/sentinel/livestream …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Roberto Rodriguez proslijedio/la je Tweet
@Cyb3rWard0g has published a number of his hunts as well. The raw YAML formats are probably good for automation and ingesting into tools (https://github.com/hunters-forge/ThreatHunter-Playbook/blob/master/playbooks/WIN-170105221010.yaml …) while the finished playbooks are nicely formatted for analysts (https://threathunterplaybook.com/notebooks/windows/03_persistence/persistence/WIN-190810170510.html …)Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Roberto Rodriguez proslijedio/la je Tweet
New today by MSTIC’s
@russmcsec . Learning from cryptocurrency mining attack scripts on Linux TI’s.https://azure.microsoft.com/en-us/blog/learning-from-cryptocurrency-mining-attack-scripts-on-linux/ …Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Roberto Rodriguez proslijedio/la je Tweet
msticpy now has a user guide! We've had basic API docs for a long time but have finally got around to writing some more accessible guides to using the package. Sample notebooks also included for many modules. Enjoy! https://msticpy.readthedocs.io/en/latest/index.html …
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
How do you integrate
@ProjectJupyter#notebooks with the#sigma project? How do you convert 300+ rules to@elastic ES query strings & pack them as part of notebooks to query ES? All from code
. I wrote about it here! Weekend readings!
#threathuntinghttps://medium.com/threat-hunters-forge/jupyter-notebooks-from-sigma-rules-%EF%B8%8F-to-query-elasticsearch-31a74cc59b99 …Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Roberto Rodriguez proslijedio/la je Tweet
Responder 3.0.0.0 is out! Massive upgrade, support for both py3 and py2, many bug fix, enhancements and Q.A++ on all servers, poisoners and tools. Enjoy! ;)https://github.com/lgandx/Responder/releases/tag/v3.0.0.0 …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Roberto Rodriguez proslijedio/la je Tweet
Spray-AD, a new
@OutflankNL Kerberos password spraying tool for Cobalt Strike that might come in handy when assessing Active Directory environments for weak passwords (generates event IDs 4771 instead of 4625).https://github.com/outflanknl/Spray-AD …Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Roberto Rodriguez proslijedio/la je Tweet
#MSTICpy 0.3.0 released!
https://pypi.org/project/msticpy/ …
Want to combine your #AzureSentinel and#MDATP data? Well now you can with our#MDATP connector.pic.twitter.com/z6KFAuP8Gg
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Roberto Rodriguez proslijedio/la je Tweet
msticpy 0.3.0 released New features: MS @WindowsATP queries, ProcessTree interactive viewer (using Bokeh), querying of Azure resource and subscription data from
#JupyterNotebook Thx@MSSPete and@ashwinpatil https://github.com/microsoft/msticpy/releases … https://pypi.org/project/msticpy/ …pic.twitter.com/I6irxuxIYT
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi
Čini se da učitavanje traje već neko vrijeme.
Twitter je možda preopterećen ili ima kratkotrajnih poteškoća u radu. Pokušajte ponovno ili potražite dodatne informacije u odjeljku Status Twittera.