Tweetovi
- Tweetovi, trenutna stranica.
- Tweetovi i odgovori
- Medijski sadržaj
Blokirali ste korisnika/cu @l3m0ntr33
Jeste li sigurni da želite vidjeti te tweetove? Time nećete deblokirati korisnika/cu @l3m0ntr33
-
Hugo Rifflet proslijedio/la je Tweet
Tetrane launches REVEN Professional Edition! You were many to request and wait for a lighter, more accessible, more affordable version of REVEN. Here it is! REVEN Pro democratizes full-system timeless analysis for vulnerability and malware analysis. https://blog.tetrane.com/REVEN_Professional_Edition_launch.html …pic.twitter.com/kWuG8YVu5c
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Hugo Rifflet proslijedio/la je Tweet
We've been speaking about it for almost 2y. We've been making it for more than 1y. And soon we will unleash it. TheHive 4. A brand new architecture, more than 40k lines of Scala code, multi-tenancy, RBAC & much more. That's
#FOSS. Done right
http://blog.thehive-project.org/2020/02/05/under-the-mighty-hood-of-thehive-4/ …Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Hugo Rifflet proslijedio/la je TweetHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi
-
Hugo Rifflet proslijedio/la je Tweet
Jeu du lundi: identifier l'entreprise qui recherche son CERT Manager (bien payé pour le coup). Les chiffres m'indiquent Thalès mais je ne vois pas où Thalès aurait besoin d'un CERT Manager. Une idée ?pic.twitter.com/maR6YftHIE
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Hugo Rifflet proslijedio/la je Tweet
Want to see how the
@Mandiant red team weaponizes@FireEye threat intel for R&D and TTP development? Check out some research I did with@evan_pena2003 and@FuzzySec. Also includes some new executables that can be used for DLL abuse.https://www.fireeye.com/blog/threat-research/2020/01/abusing-dll-misconfigurations.html …Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Hugo Rifflet proslijedio/la je Tweet
I've spent a whole day on Sigma Focus: Facilitate contributions - New Rule Creation Guide https://github.com/Neo23x0/sigma/wiki/Rule-Creation-Guide … - New colorised test output - New test cases - Rule cleanup (title, date, ids) https://github.com/Neo23x0/sigma/pull/604 … Next step: How-to guide for pull requestspic.twitter.com/5Iy4NSmiEo
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Hugo Rifflet proslijedio/la je Tweet
Petite précision sur le tweet pour les postes dans mon labo. Tous papiers acceptés quelque soient l'endroit sur la planete, l'école paie le déplacement. L'école paie aussi le déplacement pour 2 confs par an. Evidemment si la conf coute plus de 500 euros, il y aura discussion
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Hugo Rifflet proslijedio/la je Tweet
Au fait si tu en as marre de faire du caca dans ta boîte et que tu aimes la recherche en secu, les étudiants et que tu cherches pas un salaire comme chez Google mon labo recrute deux personnes à temps plein. PM ouvert !
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Hugo Rifflet proslijedio/la je Tweet
I've transformed the expressions from my "Top Base64 Encodings" learning aid into a YARA and Sigma rule and published them in the respective repos Learning Aid https://gist.github.com/Neo23x0/6af876ee72b51676c82a2db8d2cd3639 … YARA https://github.com/Neo23x0/signature-base/blob/master/yara/gen_powershell_susp.yar#L204 … Sigma https://github.com/Neo23x0/sigma/blob/master/rules/windows/process_creation/win_powershell_frombase64string.yml …pic.twitter.com/5C5MRGGFaL
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Hugo Rifflet proslijedio/la je Tweet
Bravo à l’équipe classée seconde au challenge Forensic! Chaque membre remporte un an d’abonnement à MISC
#FIC2020pic.twitter.com/OLOCeQIR2z
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Hugo Rifflet proslijedio/la je Tweet
It’s with great pleasure I'm (finally) releasing my
@MISPProject docker images. Images are optimised for home and enterprise use. Some cleanup work to do (see issues), but its been in$work prod for months now. Github: https://github.com/coolacid/docker-misp … DockerHub: https://hub.docker.com/r/coolacid/docker-misp …Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Hugo Rifflet proslijedio/la je Tweet
HEVD -- Arbitrary Write, Win7 x86 https://h0mbre.github.io/HEVD_AbitraryWrite_32bit/ … thanks to all the sourced bloggers, content producers, elders
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Hugo Rifflet proslijedio/la je Tweet
1\ Surprisingly, you could build a very mediocre PE malware detector with a single PE feature: the PE compile timestamp. In fact, I built a little random forest detector that uses only the timestamp as its feature that gets 62% detection on previously unseen malware at a 1% FPR.
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Hugo Rifflet proslijedio/la je TweetHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi
-
Hugo Rifflet proslijedio/la je Tweet
What issues do people have with a
#Sysmon rollout in an enterprise? Log volume? I’ve seen orgs worried about 20GB of daily Sysmon log data, while at the same time spending a 6 figure sum on a license to process 500GB of daily firewall log data. (which is mostly useless)Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Hugo Rifflet proslijedio/la je Tweet
Log Sources - ordered by priority - with ratings in different categories - personal and highly subjective assessment - from my most recent slide deck on low hanging fruits in security monitoring
#SIEM#SecurityMonitoring#ThreatHuntingpic.twitter.com/wuWImWLB77
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Hugo Rifflet proslijedio/la je Tweet
New Tutorial Video
Learn how to automaticaly decrypt #REvil strings with#IDAPro and python
The 4th part in our reverse engineering #ransomware deep-dive series.
https://youtu.be/l2P5CMH9TE0
#OpenAnalysisLive#Malware#tutorialsHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Hugo Rifflet proslijedio/la je Tweet
Notorious downloader Trojan sLoad's version 2.0, Starslord, has new functionality that can track the stage of infection + an anti-analysis trap that can identify and profile analyst machines. Learn how these new powerful features can pose even higher risk:https://msft.it/6011TZBL9
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Hugo Rifflet proslijedio/la je Tweet
The claim in the FTI forensics report on Bezos’ iPhone that, “due to end-to-end encryption employed by WhatsApp, it is virtually impossible to decrypt the contents of the downloader [.enc file]...” bugged me so much that I coded up how to do it:https://github.com/ddz/whatsapp-media-decrypt …
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Hugo Rifflet proslijedio/la je Tweet
Sharing a new demo + an article on BlueKeep dissection (CVE-2019-0708) using REVEN. See how data Tainting, Memory History, and its Python API streamline the RE process to quickly and accurately analyze the root-cause and behavior at the system level. https://blog.tetrane.com/2020/01/22/bluekeep.html …pic.twitter.com/aA8gvu2Brs
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi
Čini se da učitavanje traje već neko vrijeme.
Twitter je možda preopterećen ili ima kratkotrajnih poteškoća u radu. Pokušajte ponovno ili potražite dodatne informacije u odjeljku Status Twittera.