Tweetovi
- Tweetovi, trenutna stranica.
- Tweetovi i odgovori
- Medijski sadržaj
Blokirali ste korisnika/cu @chrisdoman
Jeste li sigurni da želite vidjeti te tweetove? Time nećete deblokirati korisnika/cu @chrisdoman
-
chris doman proslijedio/la je Tweet
1\ I've written a little compiler to ship ML models as standalone Yara rules, and done proof of concept detectors for Macho-O, RTF files, and powershell scripts. So far I have decision trees, random forests, and logistic regression (LR) working. https://github.com/inv-ds-research/yaraml_rules …pic.twitter.com/sfuXEkHeNO
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
chris doman proslijedio/la je Tweet
SharePoint vulnerability CVE-2019-0604 from a year ago has been used to hack the UN. Three different UN agencies got owned, about 20 domain admin accounts accessed and implants on 40 servers. They didn’t disclose.https://www.thenewhumanitarian.org/investigation/2020/01/29/united-nations-cyber-attack …
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
chris doman proslijedio/la je TweetHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi
-
Report by
@siderafer comparing some recent Syrian Electronic Army, and Gaza Hacker Team, reporting - https://cybersecurity.att.com/blogs/labs-research/alien-labs-2019-analysis-of-threat-groups-molerats-and-apt-c-37 …pic.twitter.com/c6eZnORkKO
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
chris doman proslijedio/la je Tweet
#Citrix#Netscaler#Shitrix
Snort
https://doc.emergingthreats.net/bin/view/Main/2029206 …
Sigma
https://github.com/Neo23x0/sigma/blob/master/rules/web/web_citrix_cve_2019_19781_exploit.yml …
YARA
https://github.com/Neo23x0/signature-base/blob/master/yara/exploit_shitrix.yar …
IOCs
https://otx.alienvault.com/pulse/5e1c293e07c770f36d232489 …
Nmap NSE
https://github.com/cyberstruggle/DeltaGroup/blob/master/CVE-2019-19781/CVE-2019-19781.nse …
MSF
https://github.com/rapid7/metasploit-framework/blob/a64b0fa9e75befc3ffdb6129e88a6f6dd4c31208/modules/exploits/unix/webapp/citrix_dir_trasversal_rce.rb …
HoneyPot
https://github.com/MalwareTech/CitrixHoneypot …
SSH checkhttps://twitter.com/cyb3rops/status/1216310642552049666 …
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Consolidated IOCs from a number of reports of recent CVE-2019-19781 exploitation (Citrix ADC/Netscaler/
#Shitrix) are available @ https://otx.alienvault.com/pulse/5e1c293e07c770f36d232489 …pic.twitter.com/u07tu01QIB
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Hey
@CERTEU the page https://cert.europa.eu/cert/newsletter/en/latest_MemosAndBriefs_.html … links to C:\Server\Tomcat8.5_BASE\webapps\static\MEMO\2020\TLP-WHITE-CERT-EU-THREAT-MEMO-200106-1.pdf - the correct link is https://media.cert.europa.eu/static/MEMO/2020/TLP-WHITE-CERT-EU-THREAT-MEMO-200106-1.pdf …Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
chris doman proslijedio/la je Tweet
I don’t understand how Travelex think it’s okay to leave customers not knowing they’ve had their bank details stolen, not informing the regulator, the banks etc. They’re going to end up with big GDPR fine now too.https://www.bleepingcomputer.com/news/security/sodinokibi-ransomware-hits-travelex-demands-3-million/ …
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
chris doman proslijedio/la je Tweet
It boggles my mind that there’s this near $100bn cybersecurity industry, and the biggest malware threat is directly tackled by people like Jay (who doesn’t work in the industry).https://twitter.com/JayTHL/status/1212730303040643074 …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
chris doman proslijedio/la je Tweet
Ghosts in the Clouds: Inside China’s Major Corporate Hack A Journal investigation finds the Cloud Hopper attack was much bigger than previously knownhttps://www.wsj.com/articles/ghosts-in-the-clouds-inside-chinas-major-corporate-hack-11577729061 …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
chris doman proslijedio/la je Tweet
At CIA, some officials were so concerned about technology thwarting espionage, they created a "Station of the Future" in Latin America to reimagine tradecraft. This is the story of the digital threat to human intelligence over the last several decades.https://news.yahoo.com/shattered-inside-the-secret-battle-to-save-americas-undercover-spies-in-the-digital-age-100029026.html …
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Hey
@kwikfit just picked up my car from Wimbledon and you've cut a massive scratch in it. Who do I talk to?pic.twitter.com/rvttUwvByd
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
chris doman proslijedio/la je Tweet
On the info ops front, a new UKR Leaks documentary is pushing disinfo/conspiracy theories on MH-17 with the lie that it "was shot down by the armed forces of Ukraine" and was a "preplanned and well-concealed operation of the security agencies of Kyiv and its Western partners."pic.twitter.com/JHGGROrZcj
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
chris doman proslijedio/la je Tweet
A little christmassy APT poem: 'Twas the night before Christmas, when all through the net Not a creature was stirring, not even a RAT; The signatures were hung in VirusTotal with care, In hopes that threat actors soon would be there;
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
And Danny Palmer wrote a good article on all this in 2018 ->https://www.zdnet.com/article/free-easy-to-use-and-available-to-anyone-the-powerful-malware-hiding-in-plain-sight-on-the-open-web/ …
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Credit to
@tlansec for the idea for the talk, and@k_sec at Kaspersky gave a talk on "Open Source APT" earlier that year that is worth watching ->https://www.youtube.com/watch?v=yQ0zZ6Anb64 …Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
I gave a talk "Proliferation of GitHub code in real attacks" on attackers (Sandworm, HiddenTear, "ISIS" ...) using offensive source security tools that might still be relevant given all the OST discussions -> https://www.slideshare.net/ChristopherDoman/open-source-malware-sharing-is-caring … (slides) / https://www.youtube.com/watch?v=tXJ5qxLyoVI … (video)pic.twitter.com/ik1oG81wEj
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
chris doman proslijedio/la je Tweet
With trepidation I retweet Tony Blair making perfect sense again. We were all let down by this takeover of the Labour Party by a protest movement and the country was let down by an ineffective opposition.pic.twitter.com/KbTXUiVGH4
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
chris doman proslijedio/la je Tweet
Almost 9 months post attack, Norsk Hydro reveal they called in Microsoft to aid response. There’s a TON of information in this, I think cybersecurity history will look back at Norsk as a bellwether for good crisis management.https://news.microsoft.com/transform/hackers-hit-norsk-hydro-ransomware-company-responded-transparency/ …
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
chris doman proslijedio/la je Tweet
This clip needs to be played continuously over next few days.pic.twitter.com/IOE6QXr5UE
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi
Čini se da učitavanje traje već neko vrijeme.
Twitter je možda preopterećen ili ima kratkotrajnih poteškoća u radu. Pokušajte ponovno ili potražite dodatne informacije u odjeljku Status Twittera.