Tweetovi
- Tweetovi, trenutna stranica.
- Tweetovi i odgovori
- Medijski sadržaj
Blokirali ste korisnika/cu @decalage2
Jeste li sigurni da želite vidjeti te tweetove? Time nećete deblokirati korisnika/cu @decalage2
-
Prikvačeni tweet
Final slides of my presentation yesterday at Black Hat Europe 2019, about malicious VBA macros and recent advances in the attack & defence sides: https://www.decalage.info/bheu2019 Featuring
#oletools/olevba, ViperMonkey, MacroRaptor, EvilClippy#BHEU#BHEU2019pic.twitter.com/iT8iqvIM8E
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Decalage proslijedio/la je Tweet
This abomination is the regex for validating IPv6 addresses: https://ihateregex.io/expr/ipv6 pic.twitter.com/odoSJGZLUt
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Decalage proslijedio/la je Tweet
Analysis of a triple-encrypted AZORult downloader https://i5c.us/3b2v4Jc pic.twitter.com/WawmyF13e1
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Decalage proslijedio/la je Tweet
Threat Bus: a real-time pub/sub broker to get intelligence/indicators from
@MISPProject and feed your@Zeekurity in real-time & get sightings from your NIDS to MISP. A clever way to connect efficiently open source security tools. Thanks to@tenzir_company https://github.com/tenzir/threatbus …pic.twitter.com/vn25bMPix8
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Decalage proslijedio/la je Tweet
Interested in learning how to debug macros or learn more about the structure of user forms? In my latest video, I show you how to use the Office IDE to debug a recent
#emotet#maldoc https://youtu.be/xcRPhm5iRdo pic.twitter.com/ALBIp7wq2Q
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Decalage proslijedio/la je Tweet
Malware that just quits? I think there's more to the formula in this maldoc.
#oletools reveals all cc/@decalage2
https://www.virustotal.com/gui/file/f0bfbad00ca2cb6a09eb2a9975000f6d5d666f6ecf3d0c066543d867f365e7fc …pic.twitter.com/g9vITlJL5j
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Decalage proslijedio/la je Tweet
The present everyone has been asking for is here! We are excited to announce the beta release of TRAM, a tool to aid in mapping reports to ATT&CK. You can find our latest blog with all the details at https://medium.com/mitre-attack/automating-mapping-to-attack-tram-1bb1b44bda76 … and the source code at https://github.com/mitre-attack/tram ….pic.twitter.com/8XwpgV2eCx
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Decalage proslijedio/la je Tweet
#Malware that hides commands in Metadata of Office Documents#DFIR https://research.checkpoint.com/2019/rancor-the-year-of-the-phish/ …pic.twitter.com/Zc9WOIAezA
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Decalage proslijedio/la je Tweet
From the folks that brought you Atomic Red Team, Chain Reactor is a new open source framework for composing executables that simulate adversary behaviors and techniques on Linux endpoints. https://redcanary.com/blog/chain-reactor-framework-for-linux/ …pic.twitter.com/fkOISDk9YK
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Decalage proslijedio/la je Tweet
Rich - A Python library for rich text and beautiful formatting in the terminal. https://buff.ly/2O1MZ91
#pythonpic.twitter.com/7ZGTHcFhuE
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Decalage proslijedio/la je Tweet
If
@tiraniddo's DotnetToJScript is blocked on newer versions of Windows or if it gets flagged by AMSI, you can use Excel automation via a COM object as an alternative to execute shellcode from JScript or VBScript w/o touching disk. PoC for x86 & x64 here:https://github.com/outflanknl/Scripts/blob/master/ShellcodeToJScript.js …Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
olevba and mraptor now detect the new "_OnConnecting" trigger used in some recent malware, thanks to
@matte_lodi#oletools https://twitter.com/joe4security/status/1221765460502421504 …pic.twitter.com/6GebSQZWkt
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Decalage proslijedio/la je Tweet
#MsTscAx (Microsoft Terminal Services Client Control) - OnConnecting is a new VBA macro startup method actively being used by latest#crimeware downloaders. Executes only on W10. https://buff.ly/3aOar3d#malware#DFIRpic.twitter.com/LrSsbLH6ZX
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Decalage proslijedio/la je Tweet
To celebrate this new decade, I have just released a new open source tool that could help security researchers on daily
#threatintelligence operations:#IntelOwl Check out the blog post for further info: https://www.certego.net/en/news/new-year-new-tool-intel-owl/ …@Certego_IRT@JAMESWT_MHT@reecdeepPrikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Decalage proslijedio/la je Tweet
Log Sources - ordered by priority - with ratings in different categories - personal and highly subjective assessment - from my most recent slide deck on low hanging fruits in security monitoring
#SIEM#SecurityMonitoring#ThreatHuntingpic.twitter.com/wuWImWLB77
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Decalage proslijedio/la je Tweet
MISP 2.4.120 released including the timeline support on attributes and objects in MISP. This release also includes various bugs fixed and improvements. https://www.misp-project.org/2020/01/21/MISP.2.4.120.released.html …
#ThreatIntel#DFIRpic.twitter.com/4wNR1dCEQO
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Decalage proslijedio/la je Tweet
Ho, by the way,
#curveball#cve20200601 is not only about TLS & Authenticode... it's also for S/MIME and other signatures. Yes, it's also valid against#Outlook mail signature verification
I hope nobody rely on it for legal / workflow validationpic.twitter.com/xds8l2gSILPrikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Decalage proslijedio/la je Tweet
#cve20200601#curveball last use case for today Yes, it's also dangerous for Microsoft VBA macro (especially when you think "Disable all Macros except digitally signed" will protect you)pic.twitter.com/bHGQ8ZEMs7Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Decalage proslijedio/la je Tweet
The trouble with Microsoft’s Troubleshooters by Imre Radhttps://link.medium.com/eJKbk5XKg3
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Decalage proslijedio/la je Tweet
New blog post! | Creating Responders in The Hive, with lots of practical tips to avoid some of the most common pitfalls! https://blog.nviso.eu/2020/01/13/creating-responders-in-the-hive/ …pic.twitter.com/pDXMTVfnFy
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Decalage proslijedio/la je Tweet
Contact me if you want to try out (beta) ATT&CK -
#MISP in#Maltego using remote transforms. No local python install needed.#threatintel#cti#osint#intelligence@MITREattack@MISPProjectHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi
Čini se da učitavanje traje već neko vrijeme.
Twitter je možda preopterećen ili ima kratkotrajnih poteškoća u radu. Pokušajte ponovno ili potražite dodatne informacije u odjeljku Status Twittera.