Tweetovi
- Tweetovi, trenutna stranica.
- Tweetovi i odgovori
- Medijski sadržaj
Blokirali ste korisnika/cu @bareiss_patrick
Jeste li sigurni da želite vidjeti te tweetove? Time nećete deblokirati korisnika/cu @bareiss_patrick
-
Prikvačeni tweet
The Attack Range solves two main challenges in development of detections: - quickly build a small pre configured lab infrastructure as close as possible to your production environment - perform attack simulation using Atomic Red Teamhttps://github.com/splunk/attack_range …
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Patrick Bareiß proslijedio/la je Tweet
In this post,
@jaredcatkinson talks about our approach to Detection Engineering through Capability Abstraction using Kerberoasting as an example. Check it out:https://posts.specterops.io/capability-abstraction-fbeaeeb26384 …Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Can somebody point me to some documentation for the REST API of Caldera? I want to run an operation over the REST API. Thank you very much.
@ErikVaBu@MITREattackHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Looking forward to speak at
@x33fcon . I will present my talk The return of detection engineering: detection development using Continuous Integration and Continuous Delivery (CI/CD). Looking forward to see you there. https://www.x33fcon.com/#!s/patrickb.mdHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Patrick Bareiß proslijedio/la je Tweet
Simple yet great example of how MITRE ATT&CK T1458 can be simulated and detected using the attack_range.
#purpleteam#atomic_red_team#splunk#terraform#vagrant https://buff.ly/2FX0uCy pic.twitter.com/RZ3HS0DIrv
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Patrick Bareiß proslijedio/la je Tweet
Brilliant work by Patrick https://buff.ly/37hGpTw , attack_range https://buff.ly/2SjFM7o now lets you configure your environment. a
windows client (win10)
a
splunk server (search head)
a
windows domain controller (2016)
a
attacking machine (kali)
pic.twitter.com/8A3w7RUAhi
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
So proud of the team:
@d1vious@hackpsy@rodsoto@trogdorseyPrikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Looking forward to get some feedback to the newest changes: - flexible build environment (windows dc, windows server, windows client) - dedicated attacking machine (kali linux)
@olafhartong@FDezeure@CyberWarship@Cyb3rWard0g@cyb3rops@blubbfiction@JohnLaTwCPrikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Patrick Bareiß proslijedio/la je Tweet
Sigma rule to detect the exploitation of CVE-2020-0601 as noted by
@mattifestation Reference https://twitter.com/mattifestation/status/1217179698008068096 … - built-in feature, no Sysmon required - rule is generic & detects all future events generated by this source Rule https://github.com/Neo23x0/sigma/blob/master/rules/windows/builtin/win_audit_cve.yml …pic.twitter.com/GpemX1l4bN
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Patrick Bareiß proslijedio/la je Tweet
I am super stoked for 2020. Today we start a joint adventure as FalconForce, providing highly skilled technical security services. https://www.falconforce.nl
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Patrick Bareiß proslijedio/la je Tweet
How to return a favour for using open source signatures / rules in public repos: (ordered by complexity / effort ascending) 1.
Report false positives
(issue)
2.
Fix false positives
(pull request)
3.
Add new rules
(pull request)Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Patrick Bareiß proslijedio/la je Tweet
Announcing the next EU ATT&CK Community workshop on 18-19 May 2020 in Brussels. Share you experiences with
@MITREattack and learn from others!@circl_lu@CERTEUhttps://attack-community.org/event/Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Patrick Bareiß proslijedio/la je Tweet
I am very sad about people who think that "hunting is cool, while detection engineering is boring"...
#randomHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Patrick Bareiß proslijedio/la je Tweet
cobaltstrike - beacon.dll "Your No Ordinary MZ (DOS) Header"
#sample#malware#cobaltstrike blog post: https://tccontre.blogspot.com/2019/11/cobaltstrike-beacondll-your-not.html … links: https://app.any.run/tasks/dc833ad4-508a-42eb-9bc2-cef42a558e89/ … https://www.virustotal.com/gui/file/3462e89f38d399d93e2dbe2cf415f8dabbd93c45bd8b9725274116c9b309be88/detection …pic.twitter.com/VWCnHEbFAF
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
And a big thank you to
@Centurion , who inspired us with Detection Lab.Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Would be happy to get some feedback.
@olafhartong@blubbfiction@kaithomsen@ateixei@FDezeure@andriinbPrikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
In order to successfully test the effectiveness of your detection you need a lab and an attack simulation engine. Attack Range combines both into one open source tool:https://github.com/splunk/attack_range …
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Patrick Bareiß proslijedio/la je Tweet
Got tired of dealing with broken link in
@splunk's#analyticstories https://buff.ly/347AwX9 . Sometimes the reference sites we provide go dead
! Wrote a quick blurb automatically checking them using @CircleCI. Hoping it can help you too
. https://buff.ly/2rlgYR2 pic.twitter.com/YEVsLatZCA
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Patrick Bareiß proslijedio/la je Tweet
Hunting for Credentials Dumping in Windows Environment, by
@HeirhabarovThttps://speakerdeck.com/heirhabarov/hunting-for-credentials-dumping-in-windows-environment …Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi
Čini se da učitavanje traje već neko vrijeme.
Twitter je možda preopterećen ili ima kratkotrajnih poteškoća u radu. Pokušajte ponovno ili potražite dodatne informacije u odjeljku Status Twittera.