Tweetovi
- Tweetovi, trenutna stranica.
- Tweetovi i odgovori
- Medijski sadržaj
Blokirali ste korisnika/cu @ssimonsen0202
Jeste li sigurni da želite vidjeti te tweetove? Time nećete deblokirati korisnika/cu @ssimonsen0202
-
ssimonsen0202 proslijedio/la je TweetHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi
-
ssimonsen0202 proslijedio/la je TweetHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi
-
ssimonsen0202 proslijedio/la je Tweet
3. Guidelines to show anyone how to label or rename certain fields as part of the data standardization process. Thanks to the awesome
@neu5ron for starting this processhttps://github.com/hunters-forge/OSSEM/blob/master/common_information_model/additional-guidelines/domain_or_hostname_or_fqdn.md …Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
ssimonsen0202 proslijedio/la je TweetHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi
-
ssimonsen0202 proslijedio/la je Tweet
We will again be running a purple team workshop at the next OWASP Aarhus chapter event. Tools featured from my side:
@elastic,@MISPProject,@TheHive_Project,#elastalert plus#sysmon and@Suricata_IDS plus a short piece on@cyb3rops Sigma rules!https://www.meetup.com/en-AU/OWASP-Aarhus-Chapter/events/268219709/ …Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
ssimonsen0202 proslijedio/la je Tweet
Well, we have a Sigma rule from 2017 that would detect this "brand new" Trickbot campaign and I'll write one for the wreset.exe UAC bypass Rule https://github.com/Neo23x0/sigma/blob/master/rules/windows/process_creation/win_susp_svchost.yml … https://twitter.com/ReaQta/status/1222548288731217921 …pic.twitter.com/ELcxrA0Sng
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
ssimonsen0202 proslijedio/la je Tweet
Too bad we can't evaluate the cost of Cyren service as they don't share pricing on their website.
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
ssimonsen0202 proslijedio/la je Tweet
Denying workstation to workstation communication makes lateral movement harder for attackers. Windows Firewall, FTW!https://twitter.com/jhencinski/status/1221819451617705984 …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
ssimonsen0202 proslijedio/la je Tweet
#Redteam operators: Which defensive settings have you encountered that made it *super* painful for you to operate in a Windows AD environment?Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
ssimonsen0202 proslijedio/la je Tweet
I'm more curious about this spreadsheet, do you publish it?
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
ssimonsen0202 proslijedio/la je Tweet
Log Sources - ordered by priority - with ratings in different categories - personal and highly subjective assessment - from my most recent slide deck on low hanging fruits in security monitoring
#SIEM#SecurityMonitoring#ThreatHuntingpic.twitter.com/wuWImWLB77
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
ssimonsen0202 proslijedio/la je TweetHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi
-
ssimonsen0202 proslijedio/la je Tweet
TRAM now runs reports in the background, and you can manually submit multiple reports to be analyzed!! Soon to come - automatically feeding a list of reports :) Check it out:https://github.com/mitre-attack/tram …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
ssimonsen0202 proslijedio/la je Tweet
The CVE-2019-19781 train continues. This time, we highlight a financially-motivated threat actor attempting to push ransomware via exploited Citrix and EternaBlue. Combo vulnerabilities != fun. Luckily - they didn't get far. Nice try.https://www.fireeye.com/blog/threat-research/2020/01/nice-try-501-ransomware-not-implemented.html …
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
ssimonsen0202 proslijedio/la je Tweet
Was just checking Amazon comments on the PowerShell Cookbook, and I wish I could have gotten this printed on the cover. If you own any version of the PowerShell Cookbook (ebook, physical), you get a digital searchable version for free! https://www.powershellcookbook.com/
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
ssimonsen0202 proslijedio/la je Tweet
Interesting recent change (at least 1903) to SeTokenCanImpersonate which determines if you can impersonate an access token. The Session ID is now checked so that you can't impersonate same user session 0 tokens outside of session 0.
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
ssimonsen0202 proslijedio/la je Tweet
THOR Integration into Microsoft Defender ATP -exploring synergies and setup options - example with a 'quick start' solution (scanner on file share)
@MSDefenderATP https://www.nextron-systems.com/2020/01/07/thor-integration-into-windows-defender-atp/ …pic.twitter.com/gOvpZCGbX5
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
ssimonsen0202 proslijedio/la je Tweet
Sigma rule to detect trivial & remote RDP session hijacking via mstsc shadowing https://github.com/Neo23x0/sigma/blob/master/rules/windows/process_creation/win_rdp_hijack_shadowing.yml …https://twitter.com/kmkz_security/status/1220694202301976576 …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
ssimonsen0202 proslijedio/la je Tweet
Pumped to start with
@SOC_Prime next week. Looking forward to get back to SIGMA & threat hunting content, large scale NSM & database architectures, and rejoin w/ my Windows Logs Zero 2 Hero cohort@acalarch. Alot more to comeHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
ssimonsen0202 proslijedio/la je Tweet
Revisiting RDP lateral movement https://posts.specterops.io/revisiting-remote-desktop-lateral-movement-8fb905cb46c3 … and releasing a project that will be part of a bigger tool coming next week
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi
Čini se da učitavanje traje već neko vrijeme.
Twitter je možda preopterećen ili ima kratkotrajnih poteškoća u radu. Pokušajte ponovno ili potražite dodatne informacije u odjeljku Status Twittera.
