Mick Douglas

@bettersafetynet

I like information security. How about you? InfoSec Innovations | SANS Certified Instructor | IANS Faculty

Vrijeme pridruživanja: travanj 2009.
95 fotografija ili videozapisa Fotografije i videozapisi

Tweetovi

Blokirali ste korisnika/cu @bettersafetynet

Jeste li sigurni da želite vidjeti te tweetove? Time nećete deblokirati korisnika/cu @bettersafetynet

  1. Prikvačeni tweet
    8. sij
    Odgovor korisniku/ci

    Just so my position is clear. OST is an artificial term to drum up fear on existing capabilities we've know about and dealt with for years. ATT&CK absolutely covers this. 100% Your request is already met. It's there. Look at the tools that facilitate the various techniques.

    Poništi
  2. prije 8 sati

    Signs I need to be more social. Android listed the "Do Not Disturb" widget as a frequent app. I do feel like my phone understands me though.

    1 reply
    Poništi
  3. 4. velj

    cafe du monde

    20 korisnika označava da im se sviđa
    Poništi
  4. 3. velj

    That looks pretty good. There's a few key points where placing your thumb on the knot as it's forming stabilizes things and allows you to adjust for what sort of end result you want.

    1 korisnik označava da mu se sviđa
    Poništi
  5. 31. sij

    Check this out. If you didn't know, Central Ohio has a vibrant hacker community. BSides CMH, and Hackers Teaching Hackers (I'm sure there's others!). Come find out why HTH is a different type of con!

    We're happy to announce that the dates for Hackers Teaching Hackers 2020 will be October 8-9 at BrewDog DogTap in Canal Winchester! We're anticipating our new site to launch next week. At that time CFPs/CFVs will open and sponsorship packets will be available.
    1 proslijeđeni tweet 10 korisnika označava da im se sviđa
    Poništi
  6. 30. sij

    I've been studying packets too much again. Stubbed my little toe and thought. Ow! Damn least significant toe! (I need help)

    6 korisnika označava da im se sviđa
    Poništi
  7. 29. sij

    Bwaaahaha

    Great, now skidz and APT alike are going to be able to freeload off of more OffSec tooling to create amazing documentation and report-outs.
    2 korisnika označavaju da im se sviđa
    Poništi
  8. 29. sij

    Sometimes it's damn near impossible to be a Crew fan. Crap like this is why I think Green Bay (NFL) and Bundesliga have it right. Sigh.

    According to , ownership is considering a rebrand that could see the team’s name and colors changed.
    Prikaži ovu nit
    1 reply
    Poništi
  9. 28. sij

    Working on some project. those who use linux at work, which distro do you use? Is RHEL still "the" enterprise linux? Let me know, I want to be sure to include what *you* use.

    19 replies 2 proslijeđena tweeta 6 korisnika označava da im se sviđa
    Poništi
  10. 27. sij

    Trying to find the WMI/CIM equiv in *nix. OpenLMI and WBEM are the only two I've found so far. Are there others? Of the two, what are the pros/cons of each? Please RT for visibility.

    1 reply 11 proslijeđenih tweetova 1 korisnik označava da mu se sviđa
    Poništi
  11. 27. sij

    Son of a... Vegan Rediwhip (coconut milk) is amazing. I kinda like it better than the normal stuff.

    Poništi
  12. proslijedio/la je Tweet
    27. sij

    macOS example. 👨‍🏫👨‍💻💻🖥⌨️

    2 proslijeđena tweeta 3 korisnika označavaju da im se sviđa
    Prikaži ovu nit
    Prikaži ovu nit
    Poništi
  13. proslijedio/la je Tweet
    27. sij

    New week new opportunities! I threw together a pair of scripts to monitor the clipboard on Windows and macOS to gather passwords from password managers. Make it an awesome week!

    7 replies 35 proslijeđenih tweetova 97 korisnika označava da im se sviđa
    Prikaži ovu nit
    Prikaži ovu nit
    Poništi
  14. 24. sij

    Hardcore WMI question: how in use are the WBEM standards in linux? Is that the closest "thing" to Windows WMI/CIM? Very hard to get straight answers... anyone know where I should look for more info? I'm willing to RTFM, please point me to the right FM. :-)

    1 reply 4 proslijeđena tweeta 2 korisnika označavaju da im se sviđa
    Poništi
  15. 23. sij

    UI/UX folks, is Clippy why we don't see wizards anymore for software? I cannot remember the last time I saw/used one. Or are wizards a sign of a broken bit of interaction? Have we moved past them?

    1 reply 1 korisnik označava da mu se sviđa
    Poništi
  16. 23. sij

    Very neat way to bypass restrictions. But also HIGHLY detectable. Why is "Bob" in accounting setting up new triggers? Cool bypass, can be seen if you know what to look for.

    This is a cool trick. This works because a custom service trigger is defined. Action: 1 (SC_ACTION_RESTART) Guid: Microsoft-Windows-Feedback-Service-TriggerProvider ETW Provider Type: 0x14 (SERVICE_TRIGGER_TYPE_CUSTOM)
    Prikaži ovu nit
    1 reply 2 proslijeđena tweeta 3 korisnika označavaju da im se sviđa
    Poništi
  17. 23. sij

    Broke: your OSS project rips on other projects. Woke: you have a manifesto on why your tool is neat Dope: you explain how your tool works with EVERYTHING and is just there to add to the party.

    1 reply 3 korisnika označavaju da im se sviđa
    Poništi
  18. 22. sij

    Some ABA (Application Behavior Analytics) tools I like: Sysmon (with app logging) SRUM forensic review (hat tip ) EDR logs if available Win Event ID 4688 (hat tip ) What are your favs in the ABA space?

    1 proslijeđeni tweet 8 korisnika označava da im se sviđa
    Prikaži ovu nit
    Prikaži ovu nit
    Poništi
  19. 22. sij

    Some SBA (System Behavior Analytics) tools I like Zeek (Bro) Sysmon (with network logging enabled) Win Firewall (log RFC 1918 traffic, exclude expected servers) Any EDR if you have it What are your favs?

    5 korisnika označava da im se sviđa
    Prikaži ovu nit
    Prikaži ovu nit
    Poništi
  20. 22. sij

    UBA (User Behavior Analytics) is cool, but please don't forget about SBA (System Behavior Analytics) and ABA (Application Behavior Analytics). UBA is only part of a triangle... and is often hardest to solve. Suggested path: SBA -> ABA -> UBA If UBA is hard, go with easier task

    6 proslijeđenih tweetova 15 korisnika označava da im se sviđa
    Prikaži ovu nit
    Prikaži ovu nit
    Poništi
  21. 21. sij

    This needs to be the convo. There are other legal techniques available. IDK why this keeps resurfacing every few years.

    I’m half convinced a lot of the LEO complaints about encrypted iPhones are just a front to make people think cops don’t just subpoena the backups from iCloud/Google
    Prikaži ovu nit
    1 proslijeđeni tweet 5 korisnika označava da im se sviđa
    Poništi

@bettersafetynet još nije objavio nijedan Tweet.

Čini se da učitavanje traje već neko vrijeme.

Twitter je možda preopterećen ili ima kratkotrajnih poteškoća u radu. Pokušajte ponovno ili potražite dodatne informacije u odjeljku Status Twittera.

    Možda bi vam se svidjelo i ovo:

    ·