Tweetovi
- Tweetovi, trenutna stranica.
- Tweetovi i odgovori
- Medijski sadržaj
Blokirali ste korisnika/cu @dwizzzleMSFT
Jeste li sigurni da želite vidjeti te tweetove? Time nećete deblokirati korisnika/cu @dwizzzleMSFT
-
Dave dwizzzle Weston proslijedio/la je Tweet
We’re currently running a pilot that uses the underlying tech to replace old code with safe parsers on critical attack surface. It’s looking promising.https://twitter.com/intoverflow/status/1225554087766216704 …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
I was talking to a few folks today about the new awesome Cisco research and said: "we have come a long way since Mike Lynn" and they had no idea who he was. Lets be a community that celebrates those they paved the way and doesn't forget
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Mike Lynn is just one of the many heroes that made it possible for so many people to have a legit job in security research today. I could go on about dozens of others who had similar impacts.
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
We are only 15 years removed from this: https://www.infoworld.com/article/2671541/black-hat--iss-researcher-quits-job-to-detail-cisco-flaws.html …pic.twitter.com/1dzE64zwk6
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
I love all the new people and energy in security, its awesome. However lets not forget the shoulders of giants we stand on, new folks should try their best to learn history. They did it for fun and because it was the right thing to do when it wasn't cool, popular, or heroic.
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
3) now you can decide if you really still need to buy something to get more visibility for the much smaller set of attacks arhat actually apply to you
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
2) your actually going to be able to see anomalies because you will be protected from the vast majority of real world attacks
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
1) not going to have alert fatigue from al kinds of random crap hitting your machines
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Your better off getting a prevention baseline deployed (yes this is going to be a lot of work) and using sysmon and logs to start. Once you have that your:
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Also most people do endpoint wrong. They go “all in” on “visibility” and “threat hunting” while their endpoints are a dumpster fire. How are you going to find an APT in a sea of adware,keygens, and coin miners all over your enterprise? Your not.https://twitter.com/dwizzzleMSFT/status/1225534579953586178 …
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Also help us help you. Try rolling this stuff out in your org and then reach out with stuff we need to improve
@DerekGranitoPrikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Now that everyone has an EDR and 20 other agents on the machine this is how attackers will respond. You need to get app control AND driver control deployed to get out of the wack a mole cycle.
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Dave dwizzzle Weston proslijedio/la je TweetHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi
-
Truth is all fancy EDRs and endpoint security can be disabled by an attack like this. With Driver control using HVCI on Windows 10 this attack is prevented. You don’t need to buy this, it’s included in Windows 10 pro and up. All Secured core PCs have it on by default.https://twitter.com/SwiftOnSecurity/status/1225494447980453890 …
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Dave dwizzzle Weston proslijedio/la je Tweet
9/9 thank you so much
@tom41sh,@nogadanciger, Gili Ben-Zvi and the rest of the orgteam for yet another amazing event, and for letting me take a more significant part in it this year
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Dave dwizzzle Weston proslijedio/la je Tweet
Mitigations for path redirection attacks: hardlinks will require write access to target file, junctions created from medium IL will be marked and not followed by privileged processes, SYSTEM will get its own %TEMP%https://twitter.com/dwizzzleMSFT/status/1225048404298027008 …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Dave dwizzzle Weston proslijedio/la je Tweet
Great talk by
@dwizzzleMSFT ! Definitely check out these slides on excellent approaches for scaling and measuring security practices at your org!https://twitter.com/dwizzzleMSFT/status/1225048404298027008 …Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Dave dwizzzle Weston proslijedio/la je TweetHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi
-
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi
-
Dave dwizzzle Weston proslijedio/la je Tweet
They asked about you in the Haifa kebab
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi
Čini se da učitavanje traje već neko vrijeme.
Twitter je možda preopterećen ili ima kratkotrajnih poteškoća u radu. Pokušajte ponovno ili potražite dodatne informacije u odjeljku Status Twittera.
but I stay woke 
Early research funded by