Back when I did Black Ice, the first IDS event it triggered on was “traffic seen”. It continuously checked it’s healthhttps://twitter.com/GossiTheDog/status/1143636007218290688 …
-
-
I think part of the issue is admins get a ton of alerts for things like photoshop_crack.exe, so they think "omg if we ever turn this off we're owned", but that's the wrong way to interpret that, right?
-
(Not my network, spitballing worst case) Working on multiple things at once, some of them boring so I like to spice things up with deep-forward work. Worry is lack of instrumentation in browser extensions compared to other avenues. Blocking obfuscated code is good news though.
End of conversation
New conversation -
-
-
A fair reply. Working on multiple things at once, some of them boring so I like to spice things up with deep-forward work. Worry is lack of instrumentation in browser extensions compared to a lot of other techniques. Just another thing on the shelf...
-
Oh and I didn’t mean to imply that was the only thing on my network, not at all, but more of representing the general networks in most companies.
- 1 more reply
New conversation -
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.
. You and I both know that if antivirus is the only thing standing between attackers and your network, you sure as hell are not 95% secure.
