Ismael Valenzuela @ #SANSSecEast

@aboutsecurity

Leading ▪️Former , ▪️SANS Instructor, GSE #132 ▪️Author

Malaga, Spain   NYC-NJ, USA 
aboutsecurity.io
Vrijeme pridruživanja: lipanj 2009.
497 fotografija ili videozapisa Fotografije i videozapisi

Tweetovi

Blokirali ste korisnika/cu @aboutsecurity

Jeste li sigurni da želite vidjeti te tweetove? Time nećete deblokirati korisnika/cu @aboutsecurity

  1. Prikvačeni tweet
    11. pro 2019.

    If you’re thinking about taking the SEC530: Defensible Security Architecture and Engineering in 2020, check out this review from a recent student that attended my class in Tokyo last week:

    5 proslijeđenih tweetova 8 korisnika označava da im se sviđa
    Poništi
  2. 4. velj

    ⚠️Nerd Joke Alert ⚠️ So a TCP packet goes into a bar dressed as a UDP packet... what does he say to the bartender? "QUIC get me a beer!" cc/ 😝

    5 replies 26 proslijeđenih tweetova 57 korisnika označava da im se sviđa
    Poništi
  3. 3. velj

    You sure? Wait until the DNS exfiltration lab ;)

    -530 Oh yeah, we secure Yo!
    1 proslijeđeni tweet 5 korisnika označava da im se sviđa
    Poništi
  4. proslijedio/la je Tweet
    2. velj

    This is for anyone who wonders about the utility of in 2020. Not everyone computes in a 5g, cloud-first, beyond corp, zero trust, next-gen, SDN, whatever-else-hotness environment. Thousands of orgs just have to secure their Internet-connected things.

    Hackers are hijacking smart building access systems to launch DDoS attacks - Vulnerability: CVE-2019-7256 (no patch) - CVSS score: 10/10 - Device: Linear eMerge E3 - Exploitation started last week - More than 2.3k systems are currently exposed online
    Prikaži ovu nit
    7 proslijeđenih tweetova 24 korisnika označavaju da im se sviđa
    Poništi
  5. 2. velj

    On my way to to teach getting some great news! (1) - I’m going to be doing a webinar on Architecting for with a good friend and co-founder by the end of this month (stay tuned for details!) and (2) I just got upgraded on my flight to 🛫

    1 proslijeđeni tweet 15 korisnika označava da im se sviđa
    Poništi
  6. proslijedio/la je Tweet
    2. velj

    Looking for more memory dumps to dig into? Here is my newest one! -> Win10x64_18362 DevVM Gargoyle-laden (thx ) acquired with dumpit (thx ) & analyzed with win10compression support (thx )

    6 replies 46 proslijeđenih tweetova 112 korisnika označava da im se sviđa
    Poništi
  7. 2. velj

    Great idea!

    1\ I've written a little compiler to ship ML models as standalone Yara rules, and done proof of concept detectors for Macho-O, RTF files, and powershell scripts. So far I have decision trees, random forests, and logistic regression (LR) working.
    Prikaži ovu nit
    1 reply 1 korisnik označava da mu se sviđa
    Poništi
  8. 1. velj

    Unpacking and tidying up some of my SANS books I still had in boxes after the move (still more to go in the garage). I’ve referred back to these tons of times since my very 1st class, w/ in 2007. As would ask: do they spark joy? Absolutely!! 📚💥😅

    Korisnici , i
    3 proslijeđena tweeta 41 korisnik označava da mu se sviđa
    Poništi
  9. 30. sij

    I love to use the SimpleHTTPServer module to run a quick web server to test payloads, POCs, etc. Here's a version that adds SSL+BasicAuth that is pip installable (still Python 2.7) pip install git+git://github.com/tianhuil/SimpleHTTPAuthServer.git@master

    1 reply 4 proslijeđena tweeta 18 korisnika označava da im se sviđa
    Poništi
  10. 30. sij

    Mitigations against actively exploited IE Zero-Day (CVE-2020-0674/ADV200001) with PowerShell and Intune. WARNING: Mitigations come with "side-effects", most notably breaking PAC scripts. Details here via

    1 reply 6 proslijeđenih tweetova 4 korisnika označavaju da im se sviđa
    Poništi
  11. 29. sij

    Detecting CVE-2020-0601 exploitation attempts on the network using a Zeek script via and

    1 reply 4 korisnika označavaju da im se sviđa
    Poništi
  12. proslijedio/la je Tweet
    28. sij

    Thanks for the inclusion in the awesome new book. and . Flipped through it, and it looks great! Very excited to dig into it on my flight tomorrow. Edition 😁👌🤣

    11 proslijeđenih tweetova 49 korisnika označava da im se sviđa
    Poništi
  13. proslijedio/la je Tweet
    28. sij

    Winter is Coming to the SANS Blue Team Summit training event Get ready for the debut of Cyber Defense NetWars II! Will you be the first to win this coin?

    16 proslijeđenih tweetova 50 korisnika označava da im se sviđa
    Poništi
  14. proslijedio/la je Tweet
    23. sij

    Adversary Tactics: PowerShell Course book for Free.

    14 proslijeđenih tweetova 16 korisnika označava da im se sviđa
    Poništi
  15. 22. sij

    I doubt this is the full technical report. There’s gaps i.e. the link between the egress traffic & NSO / HackingTeam infra (diamond model) among others. It’s a fun reading though with references to common techniques & tools like &

    The full technical report about Saudi Crown Prince MBS’s hacking of Amazon founder Jeff Bezos’s iPhone X is quite fascinating.
    Prikaži ovu nit
    6 proslijeđenih tweetova 8 korisnika označava da im se sviđa
    Poništi
  16. proslijedio/la je Tweet
    21. sij

    Our latest blogs provides technical detail and timeline of the work we did to analyze, reverse engineer and develop working exploits for the file signing certificates CVE-2020-0601 H/T

    12 proslijeđenih tweetova 12 korisnika označava da im se sviđa
    Poništi
  17. 21. sij

    Congrats Roberto!! 👏🏼👏🏼

    I’m so proud to have earned the certification!!. Thanks a lot and for the awesome course! Thanks also to , and for the quality material.
    1 proslijeđeni tweet 3 korisnika označavaju da im se sviđa
    Poništi
  18. 21. sij

    On why you need a : ‘When asked why he published such a massive list of "bots," the leaker said he upgraded his service from working on top of IoT botnets to a new model that relies on renting high-output servers from cloud service providers.’

    Two days ago, the infosec community was aware of the massive list of Telnet credentials leaked for more than 500 K servers, routers, and IoT devices. I created a small image with the summary about which data was leaked
    4 proslijeđena tweeta 3 korisnika označavaju da im se sviđa
    Poništi
  19. 21. sij

    Great resource! Thx for sharing Lenny!

    So glad to hear that attendees found my writing presentation useful! For those who couldn’t be there, here’s the rating sheet for the Right Information: Threat Reports that I shared:
    Poništi
  20. proslijedio/la je Tweet
    16. sij

    I'm very excited to announce the release of the highly anticipated SANS SEC588 - Cloud Penetration Testing course. Congratulations to on completing it. Watch for the beta announcement date soon:

    7 replies 47 proslijeđenih tweetova 128 korisnika označava da im se sviđa
    Poništi
  21. proslijedio/la je Tweet
    15. sij

    Potential passwords in scripts are bad... But shouldn't we find and fix those rather than blinding ourselves to modern malware?

    4 proslijeđena tweeta 17 korisnika označava da im se sviđa
    Poništi

@aboutsecurity još nije objavio nijedan Tweet.

Čini se da učitavanje traje već neko vrijeme.

Twitter je možda preopterećen ili ima kratkotrajnih poteškoća u radu. Pokušajte ponovno ili potražite dodatne informacije u odjeljku Status Twittera.

    Možda bi vam se svidjelo i ovo:

    ·