Eric Capuano

@eric_capuano

Former USAF Drone specialist - Certified Instructor - - Founder/CTO - 1B4 Operator - Dad of 2

Austin, TX
Vrijeme pridruživanja: lipanj 2009.

Tweetovi

Blokirali ste korisnika/cu @eric_capuano

Jeste li sigurni da želite vidjeti te tweetove? Time nećete deblokirati korisnika/cu @eric_capuano

  1. prije 17 sati

    Going to keep an eye on this project! Panther: A cloud-native SIEM for threat detection, cloud security, and data analytics

    Poništi
  2. prije 19 sati

    I love little gems like this buried in Amazon reviews

    Poništi
  3. prije 19 sati

    It's silly how much I enjoy building Sankey diagrams to illustrate flow, great for process ancestry or lateral movement. Need this capability in more FOSS tools!

    Poništi
  4. prije 21 sat
    Prikaži ovu nit
    Poništi
  5. prije 21 sat

    Ok -- I'm mostly confident in my knowledge of Sysmon, but this guide raises a question -- is there some benefit to installing sigcheck alongside sysmon? Is sysmon somehow able to leverage sigcheck in some awesome way?

    Prikaži ovu nit
    Poništi
  6. proslijedio/la je Tweet
    5. velj

    We've been speaking about it for almost 2y. We've been making it for more than 1y. And soon we will unleash it. TheHive 4. A brand new architecture, more than 40k lines of Scala code, multi-tenancy, RBAC & much more. That's . Done right 💪🏼

    Poništi
  7. proslijedio/la je Tweet
    5. velj
    Odgovor korisniku/ci

    I DO like his recon infosec bill forgiveness platform. It resonates with the times.

    Poništi
  8. proslijedio/la je Tweet

    Coming soon to Sysmon: clipboard logging for malicious RDP session DFIR, and shredded file recovery for capturing hacking tools

    Poništi
  9. 4. velj

    When a previous IR client decides not to implement the recommended mitigations in the after-action report...

    Poništi
  10. proslijedio/la je Tweet
    3. velj

    What if you could mount TheHive as a remote filesystem? What if you could very simply access all files added to a case, as observables or attached to tasks from your investigation machine? TheHive 4.0-RC1. End of February 2020.…

    Poništi
  11. proslijedio/la je Tweet
    3. velj

    Announcing the release of Osquery in a Box: A simple collection of docker-compose and other configuration that will bootstrap an osquery, Fleet, ELK stack environment in under 5 mins. Been wanting to try out these technologies? Now's your chance.

    Poništi
  12. proslijedio/la je Tweet
    2. velj

    ICYMI developed an online tool to convert Sigma rules into the query language of your choice FAQs What if my field values differ from the standard? What if I get too many false positives?

    Poništi
  13. proslijedio/la je Tweet
    1. velj

    Like and ?! Then you’ll love our write up on how to integrate them.

    Poništi
  14. proslijedio/la je Tweet

    It’s the last day of January! Do you know what this means? You have about one month left to submit your CFPs! Remember - what you submit does NOT have to be complete, just provide as much as you can! Check out for more info

    Poništi
  15. 1. velj

    This just shows the narrow mindedness of our industry... “omg what dumb security measures” What’s the metal detector for? Seeing if someone is *hiding* a gun. So *no shit* they’re not using it on dudes that are *openly carrying* weapons. NoT ThEiR ThReAt MoDeL!!1!11!

    Poništi
  16. 31. sij

    Had hoped for a little more 1980s Terminator, but this is great, too!

    Poništi
  17. proslijedio/la je Tweet
    31. sij

    Every other week my company laptop boots up:

    Poništi
  18. 31. sij

    Vendors... If you're going to lie, at least try to be good at it. Your {{targets}} at {{company}} might actually believe your {{bs}}.

    Poništi
  19. 31. sij

    MRW turns off his Slack notifications....because I'm a jerk.

    Poništi
  20. 31. sij

    Tesla update “release notes” must follow similar release guidelines as sysmon. Guess I’ll have to google “what’s new in this update” for this thing I critically depend on 🧐

    Poništi

Čini se da učitavanje traje već neko vrijeme.

Twitter je možda preopterećen ili ima kratkotrajnih poteškoća u radu. Pokušajte ponovno ili potražite dodatne informacije u odjeljku Status Twittera.

    Možda bi vam se svidjelo i ovo:

    ·