Tal Maor

@talthemaor

Security Researcher acquired by developing

Israel
linkedin.com/in/tal-maor-6a…
Vrijeme pridruživanja: rujan 2013.
12 fotografija ili videozapisa Fotografije i videozapisi

Tweetovi

Blokirali ste korisnika/cu @talthemaor

Jeste li sigurni da želite vidjeti te tweetove? Time nećete deblokirati korisnika/cu @talthemaor

  1. Prikvačeni tweet
    6. lip 2017.

    GoFetch is out! Take a attack path, a payload, and watch it spread through the network.

    258 proslijeđenih tweetova 352 korisnika označavaju da im se sviđa
    Poništi
  2. proslijedio/la je Tweet
    31. sij

    Pushed a new Rubeus release after getting some additional feedback from our most recent AT:RTO students. The full changes are detailed here . To highlight a few new features- "/nowrap" globally prevents base64 blobs from line-wrapping, (1/4)

    85 proslijeđenih tweetova 172 korisnika označavaju da im se sviđa
    Prikaži ovu nit
    Prikaži ovu nit
    Poništi
  3. proslijedio/la je Tweet
    1. velj

    Security researcher tracks down one of the REvil ransomware distributors to a Russian named "Alexander Taker"

    31 proslijeđeni tweet 88 korisnika označava da im se sviđa
    Poništi
  4. proslijedio/la je Tweet
    22. sij

    Revisiting RDP lateral movement and releasing a project that will be part of a bigger tool coming next week

    25 replies 485 proslijeđenih tweetova 884 korisnika označavaju da im se sviđa
    Poništi
  5. proslijedio/la je Tweet
    22. sij

    If you're playing with Kerberos and want to view the encrypted parts in Wireshark you can do so with a keytab file. Since impacket was missing structures for this I added a script to my forest trust tools repo which easily allows adding multiple keys:

    73 proslijeđena tweeta 204 korisnika označavaju da im se sviđa
    Prikaži ovu nit
    Prikaži ovu nit
    Poništi
  6. proslijedio/la je Tweet
    22. sij

    SharpRDP, a .NET console application that can be used to perform authenticated command execution against a remote target for the purposes of lateral movement through RDP without the need of a GUI client or SOCKS proxy. Send Win+R through RDP.

    100 proslijeđenih tweetova 253 korisnika označavaju da im se sviđa
    Prikaži ovu nit
    Prikaži ovu nit
    Poništi
  7. proslijedio/la je Tweet
    7. sij

    1/ so great to see something we did in 2016, actually catches real bad guys in the wild in 2019 We = + others and probably on the bad guys end 😛

    4 proslijeđena tweeta 14 korisnika označava da im se sviđa
    Prikaži ovu nit
    Prikaži ovu nit
    Poništi
  8. proslijedio/la je Tweet
    21. lis 2019.
    Odgovor korisniku/ci

    ATA detected it.

    1 reply 1 proslijeđeni tweet 1 korisnik označava da mu se sviđa
    Poništi
  9. proslijedio/la je Tweet
    21. lis 2019.

    In other words: Avast got pwned to Domain Admin, and they discovered it using Microsoft Advanced Threat Analytics

    Avast fights off cyber-espionage attempt, Abiss
    5 replies 70 proslijeđenih tweetova 153 korisnika označavaju da im se sviđa
    Prikaži ovu nit
    Prikaži ovu nit
    Poništi
  10. proslijedio/la je Tweet
    26. ruj 2019.

    Passwords are terrible. Your password is already out there as a result of some data breach. And if it’s not, it will be. Or you will be phished. It’s only a matter of time. Turn on MFA!

    0:30
    One simple action you can take to block 99.9% of attacks:
    7 replies 55 proslijeđenih tweetova 118 korisnika označava da im se sviđa
    Poništi
  11. 18. ruj 2019.

    Impressive NTLM vulnerability that Azure ATP detects on Domain Controllers network traffic

    חוקרי אבטחה ישראליים חושפים: כך שברנו את פרוטוקול ההזדהות של Windows
    3 proslijeđena tweeta 8 korisnika označava da im se sviđa
    Poništi
  12. proslijedio/la je Tweet
    9. ruj 2019.

    In late July, Microsoft reduced false positives of the Medium risk event "Unfamiliar Sign-in Properties" in , by also including EAS clientID and automatically detecting corporate IP addresses based on traffic pattern. Did it help? You tell me :-)

    1 reply 25 proslijeđenih tweetova 69 korisnika označava da im se sviđa
    Poništi
  13. proslijedio/la je Tweet
    29. kol 2019.

    Exploitating Kerberos Resource-Based Constrained Delegation: When an Image Change Leads to a Privilege Escalation

    16 proslijeđenih tweetova 31 korisnik označava da mu se sviđa
    Poništi
  14. proslijedio/la je Tweet
    2. kol 2019.

    I’m very excited to share that Covenant v0.3 is out today! Includes a brand new web-based interface. Blog below with details 🙂 [blog] Covenant: The Usability Update

    16 replies 218 proslijeđenih tweetova 493 korisnika označavaju da im se sviđa
    Poništi
  15. proslijedio/la je Tweet
    30. srp 2019.

    We’re pleased to announce the general availability of our new identity threat investigation experience, which correlates identity events from , and into a single investigation experience for security analysts and hunters alike

    1 reply 30 proslijeđenih tweetova 41 korisnik označava da mu se sviđa
    Poništi
  16. proslijedio/la je Tweet
    30. lip 2019.

    Thanks to those who attended my Windows WPP and TraceLogging talk at ! As promised, here are my slides. Additional references are in the last few slides. If you have any follow-on questions, ask away!

    92 proslijeđena tweeta 197 korisnika označava da im se sviđa
    Prikaži ovu nit
    Prikaži ovu nit
    Poništi
  17. proslijedio/la je Tweet
    1. srp 2019.

    Interested in a deep dive on Azure Advanced Threat Protection? Check out our upcoming webinar. Details and registration at . It will be a follow-up on Detections and will take place on Monday, July 15th at 8:00 AM PT / 11:00 AM ET / 15:00 UTC.

    11 proslijeđenih tweetova 26 korisnika označava da im se sviđa
    Poništi
  18. proslijedio/la je Tweet
    20. lip 2019.

    The unified Identity Threat Investigation experience between Azure Active Directory (Azure AD) Identity Protection, Azure Advanced Threat Protection (ATP), and Microsoft Cloud App Security goes public preview this month!

    1 reply 41 proslijeđeni tweet 78 korisnika označava da im se sviđa
    Poništi
  19. proslijedio/la je Tweet
    24. lip 2019.

    I wrote a small scanner utility to check if systems are vulnerable to CVE-2019-1040, the NTLM Mic vulnerability that allows for Active Directory takeover. Published here:

    7 replies 432 proslijeđena tweeta 812 korisnika označava da im se sviđa
    Prikaži ovu nit
    Prikaži ovu nit
    Poništi
  20. proslijedio/la je Tweet
    24. lip 2019.

    One of the most exciting talks today : ReDTunnel by & While DNS Rebinding is an old concept, a tool (only JS on client) that creates a stable generic HTTP(S) tunnel into the internal network of the victim can be a game changer

    61 proslijeđeni tweet 127 korisnika označava da im se sviđa
    Poništi
  21. proslijedio/la je Tweet
    17. lip 2019.

    Blog about msticpy - One library that every defender should know about featuring various modules for security analysts - base64unpack, iocextract, vtlookup, geoip, eventcluster, outliers, auditextract and more to do with

    1 reply 50 proslijeđenih tweetova 89 korisnika označava da im se sviđa
    Poništi

@talthemaor još nije objavio nijedan Tweet.

Čini se da učitavanje traje već neko vrijeme.

Twitter je možda preopterećen ili ima kratkotrajnih poteškoća u radu. Pokušajte ponovno ili potražite dodatne informacije u odjeljku Status Twittera.

    Možda bi vam se svidjelo i ovo:

    ·