Tweetovi
- Tweetovi, trenutna stranica.
- Tweetovi i odgovori
- Medijski sadržaj
Blokirali ste korisnika/cu @thor_scanner
Jeste li sigurni da želite vidjeti te tweetove? Time nećete deblokirati korisnika/cu @thor_scanner
-
Prikvačeni tweet
THOR Integration into Microsoft Defender ATP -exploring synergies and setup options - example with a 'quick start' solution (scanner on file share)
@MSDefenderATP https://www.nextron-systems.com/2020/01/07/thor-integration-into-windows-defender-atp/ …pic.twitter.com/gOvpZCGbX5
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Nextron Systems proslijedio/la je Tweet
also, MDATP can run the
@thor_scanner to increase detectionspic.twitter.com/lQbo8GvWPg
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Automated
#Citrix#Netscaler Forensic Analysis with THORhttps://www.nextron-systems.com/2020/01/14/automated-citrix-netscaler-forensic-analysis-with-thor/ …Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Not All IOC Scanning Is The Same https://www.nextron-systems.com/2019/12/09/not-all-ioc-scanning-is-the-same/ …pic.twitter.com/fLbTq5zlbI
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Features and Changes in Upcoming THOR v10.3 https://www.nextron-systems.com/2019/12/04/changes-in-upcoming-thor-version-10-3/ …pic.twitter.com/Oq3oeJAXFT
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
ASGARD Analysis Cockpit v2.8 with Sandbox Integration https://www.nextron-systems.com/2019/12/04/asgard-analysis-cockpit-v2-8-with-sandbox-integration/ …pic.twitter.com/LBIc4wNy4W
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Nextron Systems proslijedio/la je Tweet
@James_inthe_box@malwrhunterteam@Arkbird_SOLG@Rmy_Reserve@58_158_177_102@pmelson@Ledtech3 c16f1975811912673a88da92f88b6c5c HTA (VBS) 1/55 VT scan detections. Kimsuky according to@thor_scannerpic.twitter.com/UqYLwEj946
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Nextron Systems proslijedio/la je Tweet
I've just published a new Sigma rule that detects the use of a renamed 'procdump.exe' Rule https://github.com/Neo23x0/sigma/blob/master/rules/windows/sysmon/sysmon_renamed_procdump.yml … ICYMI
@thor_scanner supports Sigma scanning on endpoints (or EVTX files in lab) - see last 2 screenshotspic.twitter.com/18UKQVw3TD
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
THOR gets a test for the missing key that would enable LSA protection and reports it with 'Notice' level via
@Oddvarmoe https://twitter.com/Oddvarmoe/status/1196330474970501120 …pic.twitter.com/AJsM17Mi5a
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
What makes THOR unique - Flexibility: Portable, multiplatform, numerous output formats, use cases: incident response, forensics, triage
#DFIR - Detection Rate: 26+ modules, threat intel integrated, 10,000+ YARA & 300+ Sigma rules, anomaly detection https://www.nextron-systems.com/thor/ pic.twitter.com/1Gv2p46Fhe
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Nextron Systems proslijedio/la je Tweet
Today, we‘ve received 1TB of RAM for our new Server that hosts our internal yarGen2 (Go) service. Each module holds 16GB of RAM. It allows us to hold most of the database (all?) in memory
pic.twitter.com/zXo61NO6PV
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
THOR10 Feature Spotlight: Registry Scanning See examples in screenshot: - Applies IOCs (e.g. filename pattern) to values - YARA matching on Registry keys (e.g. Telebots malware) - Anomaly detection (e.g. debugger backdoor)pic.twitter.com/old23Oo70Y
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Nextron Systems proslijedio/la je Tweet
After the
#TURLA#LightNeuron#XTrans images uploaded from Brazil, here are some NetTrans images from Hungary. These popped up again on VT and were originally uploaded in December 2018 (1/2) https://www.virustotal.com/gui/file/2f133116d3a85ccead2b1bcfa6ba59d04387e107f0039502b39ed114e5ef8075 … https://www.virustotal.com/gui/file/e37493793723e716ba23d281d06ba31a7c921a32a848a29ce0844b2485317183 …Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
We loved to see these emails with customer / partner feedback this week They make us proud. Many thankspic.twitter.com/EjWLL4mvOk
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Nextron Systems proslijedio/la je Tweet
Colleagues asked me to provide them with a 3 minute demo of THOR's new "remote scanning" feature. Video editing took me 10x longer than the triage and that's how it should be.
#DFIR#Triagehttps://www.youtube.com/watch?v=qQgMItxdyqQ …Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
We've just release THOR v10.2 - New module: malicious Events (Windows objects) used for Rootkit detection - YARA 3.11 - DB Timing Stats - Bugfix: GoldenTicket detection broke with v10.1 (warned on too short ticket lifetimes) > please check your filtershttps://www.nextron-systems.com/2019/10/22/thor-v10-2-changes/ …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
THOR 10 - Remote Scanning > How to scan 11 remote systems for Rootkit indicators in less than 2 minutes A short video demo of THOR's new remote scan feature since v10.1https://www.youtube.com/watch?v=qQgMItxdyqQ …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
We started working on a THOR 10 for IBM's AIX Get noticed once beta testing and a stable version is available https://mailchi.mp/13e9127b8f0a/thor10-aix …
#YARA#AIX#APT#DFIR#IBM#CompromiseAssessmentpic.twitter.com/cfTRFBEZ9n
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Note that you don't need the expensive VALHALLA rule set to upgrade your Lab With THOR's forensic lab license and its "Drop Zone Mode", you apply our full
#YARA rule set easily and much cheaper to samples that you've collected (JSON output) https://www.nextron-systems.com/license-packs/ pic.twitter.com/mnciLOcftH
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
New Feature in THOR v10.1 - Remote Scanning - no agents - no scripting - no hustle Scan numerous remote systems from a single workstation. Perfect for incident response scenarios. https://www.nextron-systems.com/2019/08/29/new-feature-in-thor-v10-1-remote-scanning/ …pic.twitter.com/SyfVhtxjxX
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi
Čini se da učitavanje traje već neko vrijeme.
Twitter je možda preopterećen ili ima kratkotrajnih poteškoća u radu. Pokušajte ponovno ili potražite dodatne informacije u odjeljku Status Twittera.