Tweetovi
- Tweetovi, trenutna stranica.
- Tweetovi i odgovori
- Medijski sadržaj
Blokirali ste korisnika/cu @talthemaor
Jeste li sigurni da želite vidjeti te tweetove? Time nećete deblokirati korisnika/cu @talthemaor
-
Prikvačeni tweet
GoFetch is out! Take a
#BloodHound attack path, a payload, and watch it spread through the network.https://github.com/GoFetchAD/GoFetch …Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Tal Maor proslijedio/la je Tweet
Pushed a new Rubeus release after getting some additional feedback from our most recent AT:RTO students. The full changes are detailed here https://github.com/GhostPack/Rubeus/blob/master/CHANGELOG.md#150---2020-01-31 … . To highlight a few new features- "/nowrap" globally prevents base64 blobs from line-wrapping, (1/4)
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Tal Maor proslijedio/la je Tweet
Security researcher tracks down one of the REvil ransomware distributors to a Russian named "Alexander Taker" https://medium.com/@underthebreach/tracking-down-revils-lalartu-by-utilizing-multiple-osint-methods-2bf3a6c65a80 …pic.twitter.com/OaQQoAM8U5
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Tal Maor proslijedio/la je Tweet
Revisiting RDP lateral movement https://posts.specterops.io/revisiting-remote-desktop-lateral-movement-8fb905cb46c3 … and releasing a project that will be part of a bigger tool coming next week
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Tal Maor proslijedio/la je Tweet
If you're playing with Kerberos and want to view the encrypted parts in Wireshark you can do so with a keytab file. Since impacket was missing structures for this I added a script to my forest trust tools repo which easily allows adding multiple keys:https://github.com/dirkjanm/forest-trust-tools …
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Tal Maor proslijedio/la je Tweet
SharpRDP, a .NET console application that can be used to perform authenticated command execution against a remote target for the purposes of lateral movement through RDP without the need of a GUI client or SOCKS proxy. Send Win+R through RDP.https://posts.specterops.io/revisiting-remote-desktop-lateral-movement-8fb905cb46c3 …
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Tal Maor proslijedio/la je Tweet
1/ so great to see something we did in 2016, actually catches real bad guys in the wild in 2019 We =
@talthemaor@ItaiGrady@idanplotnik@SivanKrigsman@MichaelDolinsky@OhadPlotnik@chernymi@lakunishok + others and probably@gentilkiwi on the bad guys end
https://twitter.com/GossiTheDog/status/1186218653710241792 …pic.twitter.com/xM5HWritpa
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Tal Maor proslijedio/la je TweetHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi
-
Tal Maor proslijedio/la je Tweet
In other words: Avast got pwned to Domain Admin, and they discovered it using Microsoft Advanced Threat Analyticshttps://twitter.com/andersonc0d3/status/1186241308119195648 …
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Tal Maor proslijedio/la je Tweet
Passwords are terrible. Your password is already out there as a result of some data breach. And if it’s not, it will be. Or you will be phished. It’s only a matter of time. Turn on MFA!https://twitter.com/msftsecurity/status/1174706552248266752 …
0:30Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Impressive NTLM vulnerability that Azure ATP detects on Domain Controllers network traffic https://docs.microsoft.com/en-us/azure-advanced-threat-protection/atp-lateral-movement-alerts#suspected-ntlm-authentication-tampering-external-id-2039 …https://twitter.com/geektimecoil/status/1173930015379079168 …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Tal Maor proslijedio/la je Tweet
In late July, Microsoft reduced false positives of the Medium risk event "Unfamiliar Sign-in Properties" in
#AzureAD#IdentityProtection, by also including EAS clientID and automatically detecting corporate IP addresses based on traffic pattern. Did it help? You tell me :-)pic.twitter.com/jOsxWONfGr
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Tal Maor proslijedio/la je Tweet
Exploitating Kerberos Resource-Based Constrained Delegation: When an Image Change Leads to a Privilege Escalation https://www.nccgroup.trust/uk/about-us/newsroom-and-events/blogs/2019/august/kerberos-resource-based-constrained-delegation-when-an-image-change-leads-to-a-privilege-escalation/ … https://youtu.be/ODcP4I0MiFE
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Tal Maor proslijedio/la je Tweet
I’m very excited to share that Covenant v0.3 is out today! Includes a brand new web-based interface. Blog below with details
[blog] Covenant: The Usability Update
https://posts.specterops.io/covenant-the-usability-update-9a7a596a4772 …pic.twitter.com/IsqYrblzwr
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Tal Maor proslijedio/la je Tweet
We’re pleased to announce the general availability of our new identity threat investigation experience, which correlates identity events from
#MCAS,#AzureATP and#AADIP into a single investigation experience for security analysts and hunters alike https://aka.ms/AA5qxmw pic.twitter.com/rGtr7nwWzJ
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Tal Maor proslijedio/la je Tweet
Thanks to those who attended my Windows WPP and TraceLogging talk at
@reconmtl! As promised, here are my slides. Additional references are in the last few slides. If you have any follow-on questions, ask away! https://drive.google.com/file/d/1wtQXVdvJmhG7ba99pq3BZq_Fyf6E3F71/view?usp=sharing …pic.twitter.com/mfa1ytPJ2H
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Tal Maor proslijedio/la je Tweet
Interested in a deep dive on Azure Advanced Threat Protection? Check out our upcoming webinar. Details and registration at https://aka.ms/AATPWebinar . It will be a follow-up on Detections and will take place on Monday, July 15th at 8:00 AM PT / 11:00 AM ET / 15:00 UTC.
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Tal Maor proslijedio/la je Tweet
The unified Identity Threat Investigation experience between Azure Active Directory (Azure AD) Identity Protection, Azure Advanced Threat Protection (ATP), and Microsoft Cloud App Security goes public preview this month!
#MATP#AzureATP#MCASpic.twitter.com/zEjGkoZR6E
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Tal Maor proslijedio/la je Tweet
I wrote a small scanner utility to check if systems are vulnerable to CVE-2019-1040, the NTLM Mic vulnerability that allows for Active Directory takeover. Published here: https://github.com/fox-it/cve-2019-1040-scanner …pic.twitter.com/nsW1QQGZYH
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Tal Maor proslijedio/la je Tweet
One of the most exciting talks today
@BsidesTLV: ReDTunnel by@El3ct71k &@realgam3 https://github.com/ReDTunnel While DNS Rebinding is an old concept, a tool (only JS on client) that creates a stable generic HTTP(S) tunnel into the internal network of the victim can be a game changerHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Tal Maor proslijedio/la je Tweet
Blog about msticpy - One library that every
#python defender should know about featuring various modules for security analysts - base64unpack, iocextract, vtlookup, geoip, eventcluster, outliers, auditextract and more to do#ThreatHunting with#Jupyter https://techcommunity.microsoft.com/t5/Azure-Sentinel/msticpy-Python-Defender-Tools/ba-p/648929 …pic.twitter.com/rEkOFzPO0w
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi
Čini se da učitavanje traje već neko vrijeme.
Twitter je možda preopterećen ili ima kratkotrajnih poteškoća u radu. Pokušajte ponovno ili potražite dodatne informacije u odjeljku Status Twittera.