Tweets
- Tweets, current page.
- Tweets & replies
- Media
You blocked @davidpmcguire
Are you sure you want to view these Tweets? Viewing Tweets won't unblock @davidpmcguire
-
David McGuire Retweeted
Another instance where
@mattifestation encourages us to rethink our views on digital signature validation.https://posts.specterops.io/code-signing-certificate-cloning-attacks-and-defenses-6f98657fc6ec …Thanks. Twitter will use this to make your timeline better. Undo -
David McGuire Retweeted
How sure are you that "(Verified) Microsoft Windows" refers to a program that actually originates from Microsoft? Code Signing Certificate Cloning Attacks and Defenseshttps://posts.specterops.io/code-signing-certificate-cloning-attacks-and-defenses-6f98657fc6ec …
Thanks. Twitter will use this to make your timeline better. Undo -
David McGuire Retweeted
Shout out to the
@SpecterOps crew for making AD ACLs quickly enumerable. Used them today to add a low privileged compromised user to "Group A", "Group A" members had permissions to add to Domain Admins.Thanks. Twitter will use this to make your timeline better. Undo -
David McGuire Retweeted
We've open sourced our framework for developing alerting and detection strategies for incident response. We have also included several internal strategies as examples to spur greater sharing and collaboration with defenders.https://medium.com/@palantir/alerting-and-detection-strategy-framework-52dc33722df2 …
Thanks. Twitter will use this to make your timeline better. Undo -
David McGuire Retweeted
Are you really ready for
#ThreatHunting? What does your data look like? Data Availability != Data Quality@SpecterOps@MITREattackhttps://posts.specterops.io/ready-to-hunt-first-show-me-your-data-a642c6b170d6 …Thanks. Twitter will use this to make your timeline better. Undo -
David McGuire Retweeted
Our CEO,
@davidpmcguire, will be on a panel today discussing this year’s big lessons learned and recommendations for breach prevention in the new year with@dianakelley14,@marktw, Ashton Mozano, and Jon Green . Tune in at 1pm Easternhttps://bit.ly/2Bpg7lkThanks. Twitter will use this to make your timeline better. Undo -
David McGuire Retweeted
Our February training offering of Adversary Tactics: Red Team Operations is officially sold out. Waitlist is available. More course offerings to be announced shortly.https://specterops-atrto.eventbrite.com
Thanks. Twitter will use this to make your timeline better. Undo -
David McGuire RetweetedThanks. Twitter will use this to make your timeline better. Undo
-
David McGuire Retweeted
The slides from the CALDERA presentation at
#BHEU have been posted https://www.blackhat.com/docs/eu-17/materials/eu-17-Miller-CALDERA-Automating-Adversary-Emulation.pdf …Thanks. Twitter will use this to make your timeline better. Undo -
David McGuire Retweeted
If you're attending
#BHEU, don't miss the Arsenal demos of our Automated Collection & Enrichment (ACE) platform at with@jaredcatkinson and@robwinchester3 tomorrow (12/6) from 10:00 - 11.35 at Station 1Thanks. Twitter will use this to make your timeline better. Undo -
David McGuire Retweeted
I did a quick write-up on my method of getting BadIntent for Android set up.http://blog.obscuritylabs.com/badintent-setup/ …
Show this threadThanks. Twitter will use this to make your timeline better. Undo -
David McGuire Retweeted
Check out the new post from our
@bluscreenofjeff on building covert red team attack infrastructureshttps://posts.specterops.io/designing-effective-covert-red-team-attack-infrastructure-767d4289af43 …Thanks. Twitter will use this to make your timeline better. Undo -
David McGuire Retweeted
[blog] Designing Effective Covert Red Team Attack Infrastructurehttps://posts.specterops.io/designing-effective-covert-red-team-attack-infrastructure-767d4289af43 …
Thanks. Twitter will use this to make your timeline better. Undo -
David McGuire Retweeted
As a red teamer, if you ever have the opportunity to work a threat hunting or IR engagement, you should jump at the opportunity! You will be humbled by the challenges defenders deal with at scale and you will gain valuable insight into how they baseline normal and triage alerts.
Thanks. Twitter will use this to make your timeline better. Undo -
David McGuire Retweeted
Our resident application whitelisting breaker/expert,
@mattifestation shows us the steps involved in developing one of the most strict types of Device Guard code integrity policies.https://posts.specterops.io/adventures-in-extremely-strict-device-guard-policy-configuration-part-1-device-drivers-fd1a281b35a8 …Thanks. Twitter will use this to make your timeline better. Undo -
David McGuire Retweeted
Had an amazing time with
@SpecterOps this week taking their Adversary Tactics Powershell course. A great primer for those looking to spread their wings in offsec security research!Thanks. Twitter will use this to make your timeline better. Undo -
David McGuire Retweeted
Really enjoyed the
@SpecterOps PowerShell training. Each day had at least a couple of "Ah-ha" moments. Easily some of the best training I've been in.Thanks. Twitter will use this to make your timeline better. Undo -
David McGuire Retweeted
#FF@Cyb3rWard0g,@SpecterOps' newest employee. I'm grateful to be able to learn some awesome new defensive techniques and methodology from him.Thanks. Twitter will use this to make your timeline better. Undo -
David McGuire Retweeted
Sincerest thank you and kudos to the
@SpecterOps for their Adversary Powershell course. Easily one of the most difficult, rewarding, and inspiring courses I've taken in my career. Defenders would be remiss not to take any training offered by them.Thanks. Twitter will use this to make your timeline better. Undo -
David McGuire Retweeted
[Blog] Lateral Movement Using Outlook’s CreateObject Method and DotNetToJScripthttps://posts.specterops.io/lateral-movement-using-outlooks-createobject-method-and-dotnettojscript-a88a81df27eb …
Thanks. Twitter will use this to make your timeline better. Undo
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.