Adli Wahid

Often enough I find this image very useful to explain in one slide what .@Suricata_IDS can do on the network #threathunting #DFIRpic.twitter.com/5MfYznksCc

So there is EU proposal to weaken end-to-end encryption, and the most "funny" part, they ask the operators to protect the weaken part from abuse and it's the responsibility of the operator. https://alecmuffett.com/alecm/tmp/eu-csam-e2ee.pdf … An easy way to avoid the risk, don't do such regulation.pic.twitter.com/LnyN2ZubYI

That’s a wrap for today’s training courses and for this year’s symposium for Latin America and Caribbean region! Safe travels home and we can’t wait for our next partnered @lacnic event! cc @ComuNICbr @certbr @lacnic_csirtpic.twitter.com/3IbAgQxWEN

BREAKING: we @citizenlab found signs of a #Pegasus spyware infection at the Prime Minister's office, 10 Downing St. We notified . We'd found other infections within the Gov.. THREAD 1/ Must-read by @RonanFarrow: https://www.newyorker.com/magazine/2022/04/25/how-democracies-spy-on-their-citizens …pic.twitter.com/AwuaTlunJT

TLS traffic to non-TLS ports is often a bad sign.pic.twitter.com/AW25Cp2rcR

http://pandora.circl.lu  has been updated and now includes the set of Yara Signature Base from @cyb3rops (thanks!) Online service: http://pandora.circl.lu  Pandora open source repository: https://github.com/pandora-analysis/pandora …pic.twitter.com/aEZf5MRceL

New daily scan in place for DVR DHCPDiscover service on port 37810/UDP. This UDP-based JSON protocol (used to help manage DVRs) is abused for amplification attacks. Amp factor of ~25:1. Around 94k IPv4 services found worldwide, most in South Korea. https://www.shadowserver.org/what-we-do/network-reporting/open-dvr-dhcpdiscover-report/ …pic.twitter.com/BkkbCeTaNe

A critical part of performing #malware #analysis is investigating network traffic. This video will show you how to install @Suricata_IDS in @REMnux to use offline mode for PCAP processing https://youtu.be/zK7x43Ghn4E  Feel free to leave comments & sub if you'd like to see more! pic.twitter.com/guQovRFBio

CERT Tonga launched a Cybersecurity Workforce Development Program(CWDP) on 14 March 2022,to help build practical skills and understanding of cybersecurity issues among practitioners. We thank our partner @CERTNZ and the New Zealand Government for all the support and assistance.pic.twitter.com/XEquyOerWq

New TP240PhoneHome reflective DDoS vector with record breaking amplification ratio. Shadowserver & private sector partners worked with vendor to investigate attacks & remediate: https://www.shadowserver.org/news/cve-2022-26143-tp240phonehome-reflection-amplification-ddos-attack-vector/ … Vulnerable devices included in our free daily reports tag = CVE-2022-26143pic.twitter.com/dPOviitv5W