Chris

@cbecks_2

Infosec and the Green Bay Packers.

Vrijeme pridruživanja: studeni 2018.

Tweetovi

Blokirali ste korisnika/cu @cbecks_2

Jeste li sigurni da želite vidjeti te tweetove? Time nećete deblokirati korisnika/cu @cbecks_2

  1. proslijedio/la je Tweet
    26. sij

    Log Sources - ordered by priority - with ratings in different categories - personal and highly subjective assessment - from my most recent slide deck on low hanging fruits in security monitoring

    Poništi
  2. proslijedio/la je Tweet

    Big change coming to Windows Server this March - insecure LDAP requests will be rejected by default. That's a change in behaviour which will absolutely break things in some orgs How to get in front of the issue:

    Prikaži ovu nit
    Poništi
  3. proslijedio/la je Tweet
    27. sij

    Wrong and New Paradigms in Security Monitoring What are yours?

    Poništi
  4. proslijedio/la je Tweet
    22. sij

    Despite its incredible security enhancements, PowerShell continues to be abused by adversaries. A strong knowledge of PowerShell enables defenders to effectively manage and respond to its abuse. (1/4)

    Prikaži ovu nit
    Poništi
  5. 19. sij

    One of the better whitepapers that I’ve read over the past year.

    Poništi
  6. proslijedio/la je Tweet
    6. sij

    If you have a commute or just want to start your morning off right, come listen to me chat with about Assault Software 🙃...I mean Offensive Security Tools. Good morning, happy Monday, and regardless where you fall on this issue, get after it.

    Poništi
  7. proslijedio/la je Tweet
    29. pro 2019.

    Persistence using GlobalFlags in Image File Execution Options - Hidden from Autoruns.exe, by

    Poništi
  8. proslijedio/la je Tweet
    24. pro 2019.

    A lot of mud slinging on InfoSec twitter lately; I wanted to flip the script a bit and highlight the blogs, tools, talks etc that I keep coming back to on a regular basis, both as a defender and general InfoSec professional. Thread..

    Prikaži ovu nit
    Poništi
  9. proslijedio/la je Tweet
    20. pro 2019.

    User finds way to make their corporate antivirus stop injecting into Chrome and crashing it: Just rename it Chrom.

    Prikaži ovu nit
    Poništi
  10. proslijedio/la je Tweet
    19. stu 2019.

    InstallUtil payload "management.cs" (0/58): Sharing due to low detection rates. Extracting payload [pictured] 👉🏼grunt-unmodified.exe👀 C2: smallbusinessideas247[.]com Uploaded 1 hour ago. Though & found BEACON infra in May 2019.🤩

    Prikaži ovu nit
    Poništi
  11. proslijedio/la je Tweet
    19. pro 2019.

    2019 is out! better, cleaner code and performance boost. Improved Microsoft Query support 345% Faster load time 223% Smaller page size 74% Less requests 332 rules included latest sigmac supported

    Prikaži ovu nit
    Poništi
  12. proslijedio/la je Tweet
    19. pro 2019.

    the cool thing about those 2 newly introducted MS security eventid 4799, 4798 is that they will capture any local group/user discovery attempts even if done via winapis, below an e.g. with the checkadmin.exe custom recon tool referenced in Operation Wocao :D

    Prikaži ovu nit
    Poništi
  13. proslijedio/la je Tweet
    14. pro 2019.
    Poništi
  14. proslijedio/la je Tweet
    14. pro 2019.

    We've got a huge pending pull request on our Sigma repo from many different contributors created during the OSCD sprint in October this year Pull request from `oscd` branch OSCD Sigma Sprint

    Poništi
  15. proslijedio/la je Tweet
    9. pro 2019.

    ⚙️Account Logon Flow / Process () v0.1 📕[PDF]: 🔗[DIRECT]: ...for self understanding logon flow / process in windows system. Special thanks to Andrei Miroshnikov💪 "Find Evil – Know Normal"

    Poništi
  16. proslijedio/la je Tweet
    13. stu 2019.

    Detect: process name: msiexec.exe AND NOT process path:(C\:\\Windows\\System32\\* OR C\:\\Windows\\SysWOW64\\* OR C\:\\Windows\\WinSxS\\*)

    Prikaži ovu nit
    Poništi
  17. proslijedio/la je Tweet

    "Hidden back doors in voting machine software" is the silliest conspiracy theory ever. Anyone who's examined the code for a modern commercial voting machine can tell you that there are so many security vulnerabilities, inserting a backdoor would be a complete waste of time.

    Prikaži ovu nit
    Poništi
  18. proslijedio/la je Tweet
    5. stu 2019.

    a starting point mindmap for Windows Services

    Poništi
  19. proslijedio/la je Tweet
    29. lis 2019.

    We stand behind our employees & are committed to clearing their names of all charges in the case related to our work with the Iowa Judicial Branch. Read CEO Tom McAndrew’s statement: Our official press release:

    Poništi
  20. proslijedio/la je Tweet
    23. lis 2019.

    Hunting with Windows Security EventID 5145 summarized in one mindmap 4648, 4624 are next

    Prikaži ovu nit
    Poništi

Čini se da učitavanje traje već neko vrijeme.

Twitter je možda preopterećen ili ima kratkotrajnih poteškoća u radu. Pokušajte ponovno ili potražite dodatne informacije u odjeljku Status Twittera.

    Možda bi vam se svidjelo i ovo:

    ·