LoveKebabble   

@SignalBlur

SOAR Architect. Tweets are my own.

127.0.0.1
Vrijeme pridruživanja: studeni 2017.

Tweetovi

Blokirali ste korisnika/cu @SignalBlur

Jeste li sigurni da želite vidjeti te tweetove? Time nećete deblokirati korisnika/cu @SignalBlur

  1. The recently released a white paper on mitigating cloud vulnerabilities and it’s great. Short and to the point, identifying both the prevalence and the attacker sophistication needed to take advantage of them.

    Poništi
  2. Pro-tip: it DOES require snort to be installed on the machine running it.

    Prikaži ovu nit
    Poništi
  3. With this you can search for specific SIDS and do all sorts of neat things. Also if you’re using Suricata and running the Emerging Threats ruleset - since they’re essentially the same as the snort rules (at least for now) you can use this trick as well (with snort!)

    Prikaži ovu nit
    Poništi
  4. Life-Pro-Tip: Having difficulty trying to identify which packet triggered a more complex snort rule in a PCAP/or want to easily see the context in the entire PCAP of each Snort alert that may have triggered? Wireshark has a built in Snort post-dissector

    Prikaži ovu nit
    Poništi
  5. The new album is amazing. I had no idea they were back together

    Poništi
  6. Prikaži ovu nit
    Poništi
  7. Always try and keep critical systems up to Starfleet code!

    Prikaži ovu nit
    Poništi
  8. proslijedio/la je Tweet
    2. velj

    An epitaph for the Republican Party in the time of Trump. “The Party told you to reject the evidence of your eyes and ears. It was their final, most essential command.” — George Orwell

    Poništi
  9. proslijedio/la je Tweet
    2. velj

    Can your EDR detect symbolic link callback rootkits? Because ours sure as heck can't. and I wrote about these!

    Poništi
  10. proslijedio/la je Tweet

    This is something MS do which I’m a real fan of - instead of just an arbitrary media report about a new threat, they give you a report showing real coverage in your environment, what the gaps are in your protection and steps to close those gaps.

    Prikaži ovu nit
    Poništi
  11. 1. velj
    Poništi
  12. proslijedio/la je Tweet
    30. sij

    For the past few months, I've been diving into Apple's Endpoint Security Framework. This post shares how I use the framework for detection engineering purposes.

    Prikaži ovu nit
    Poništi
  13. proslijedio/la je Tweet
    31. sij

    Follow Friday on interesting VT Submitter Ids. My first is ec31b410 uploading from Denmark. Examples in this thread

    Prikaži ovu nit
    Poništi
  14. 31. sij

    Me dropping a zero day to gain access

    Poništi
  15. proslijedio/la je Tweet
    29. sij

    We have just pushed some *big* updates to Ghostwriter's master branch that I think you'll like. We've got WYSIWIG editors, autocomplete, new reports, and more! Check it out:

    Poništi
  16. proslijedio/la je Tweet
    28. sij

    We've all received emails with no attachment and assume it's "safe" to open in a mail client (as long as we don't explicitly click on any URLs). Right? Not so much...

    Prikaži ovu nit
    Poništi
  17. proslijedio/la je Tweet
    28. sij

    THREAD 1/5 In 2019, malware devs began adopting Cloudflare Workers via for some components of a C2 schema "Deploy without having a Cloudflare domain, to a " Use of "legit services" is an rel to 's T1102

    Prikaži ovu nit
    Poništi
  18. proslijedio/la je Tweet
    28. sij

    In IOS XR, Cisco removed the 'chmod' command. To execute your binary, upload one with +x bit set and overwrite it with yours ;)

    Poništi
  19. proslijedio/la je Tweet

    Big change coming to Windows Server this March - insecure LDAP requests will be rejected by default. That's a change in behaviour which will absolutely break things in some orgs How to get in front of the issue:

    Prikaži ovu nit
    Poništi

Čini se da učitavanje traje već neko vrijeme.

Twitter je možda preopterećen ili ima kratkotrajnih poteškoća u radu. Pokušajte ponovno ili potražite dodatne informacije u odjeljku Status Twittera.

    Možda bi vam se svidjelo i ovo:

    ·