Tweetovi
- Tweetovi, trenutna stranica.
- Tweetovi i odgovori
- Medijski sadržaj
Blokirali ste korisnika/cu @yaniv_see
Jeste li sigurni da želite vidjeti te tweetove? Time nećete deblokirati korisnika/cu @yaniv_see
-
RB_03121 proslijedio/la je Tweet
#APT operation#DangerousPasswords uses mshta dl/exec HTA w/ VBScript from C2 mail[.]googleupload[.]info, persistence w/ Xbox.lnk in startup w/ mshta to ac-2501[.]amazonaws1[.]info. Backdoor dropped in %TEMP%/uvanqvw.vbs w/ C2 103.205.179.4. Analysis/IOCs: https://tinyurl.com/tsq8f9r https://twitter.com/_re_fox/status/1225532439990280197 …pic.twitter.com/SZ4NGiXvnG
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
RB_03121 proslijedio/la je Tweet
This is OUTSTANDING work, Riccardo! Having this information in the BloodHound database is extremely powerful.https://twitter.com/dottor_morte/status/1225425174587113472 …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
RB_03121 proslijedio/la je Tweet
The most exploited vulnerabilities by
#cybercriminals consists of "two vulnerabilities in Adobe Flash Player, four vulnerabilities affecting Microsoft’s IE browser, three MS Office flaws and one WinRAR" https://www.helpnetsecurity.com/2020/02/06/most-exploited-vulnerabilities-2019/ …#malware#cybersecurity#infosec via@helpnetsecuritypic.twitter.com/GnHyA3KMLP
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
RB_03121 proslijedio/la je Tweet
Absolutely fantastic post by
@Sophos. As a defender, highly detailed breakdowns of the precise operation of malware with annotated decompilations is greatly appreciated.https://twitter.com/sophoslabs/status/1225451243902054403 …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
RB_03121 proslijedio/la je Tweet
Secret's out!
@Carlos_Perez announces the release of the TrustedSec#Sysmon Community Guide. Discover the vision for making the guide and how you can contribute to making the best#resource for all things sysmon!https://hubs.ly/H0mW9r50Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
A Red Teamer’s Guide to GPOs and OUs
#infosec#pentest#resteamhttps://wald0.com/?p=179Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Windows Red Team Cheat Sheet: http://morph3sec.com/2019/07/16/Win …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Some interesting TTPs that make for some good detection use cases:https://www.fireeye.com/blog/threat-research/2020/01/stomp-2-dis-brilliance-in-the-visual-basics.html …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
RB_03121 proslijedio/la je Tweet
Shoutout to
@expel_io's@amrandazz for his awesome blog on#IncidentResponse and how#ML can help.#cybersecurity If you read one thing today... make it this:https://bit.ly/2UsgG71Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
RB_03121 proslijedio/la je Tweet
We're excited to share our new
#collaboration with cloud data platform@SnowflakeDB https://hubs.ly/H0mW1pD0#AutonomousThreatHunting#DataLake#SecurityDataLake#ExtendedThreatDetection#XDR#data#cloudpic.twitter.com/0ikdzApp0y
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
RB_03121 proslijedio/la je Tweet
We are hosting a webinar on Tuesday, February 11th to release
#BloodHound 3.0 and discuss some of the new attack primitives being introduced.@_wald0 and@CptJesus will be talking through the update. Sign up here:https://specterops.zoom.us/webinar/register/WN_Ak7pi_zxSM28HBIl5RIVWw …Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
RB_03121 proslijedio/la je Tweet
Capability Abstraction - cool post by
@jaredcatkinson on detection engineering. Really like the abstraction map concept.https://medium.com/@jaredcatkinson/capability-abstraction-fbeaeeb26384 …Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
RB_03121 proslijedio/la je Tweet
Some binaries which have known UAC bypass techniques. wusa WSReset winsat tzsync TpmInit taskhost SystemPropertiesAdvanced sysprep svchost slui setupsqm sdclt schtasks rstrui recdisc pkgmgr osk oobe msconfig mmc migwiz mcx2prov iscsicli inetmgr GWXUXWorker fodhelper EventVwr
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
RB_03121 proslijedio/la je Tweet
#Logontracer v1.4.0 has been released with few updates to the function, including dark mode. We will be showing a demo at#RSAC2020 - the Japan Pavillion #2245 in South Expo. ^YU Tool download: https://github.com/JPCERTCC/LogonTracer/releases/tag/v1.4.0 … RSA Conference: https://www.rsaconference.com/usa/expo-and-sponsors/jpcertcc …pic.twitter.com/iBLzJDPQBx
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
RB_03121 proslijedio/la je Tweet
Summarized some of the
#DFIR events I've posted before (some are less known) Slides can be found here -> https://bit.ly/2NqOyw5
pic.twitter.com/BeuTmnKR7N
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
RB_03121 proslijedio/la je Tweet
Here’s a complete port of
@harmj0y’s Seatbelt from the GhostPack toolkit to Boolang ( cause why not ). This has been in SilentTrinity for a while but it might be useful standalone.https://gist.github.com/byt3bl33d3r/8cd5d85fdeee670c3642b0829a2cfaad …Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
RB_03121 proslijedio/la je Tweet
Automato should help with automating some of the user-focused enumeration tasks during an internal penetration test.https://github.com/skahwah/automato …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
RB_03121 proslijedio/la je Tweet
some exploits tend to load directly ntoskrnl.exe (indows Kernel) to do some offsets calcs for some critical kernel structs or global vars ... in normal condition this should be rare so won't harm to add it to your sysmon/EDR config.pic.twitter.com/VDststNMUQ
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
RB_03121 proslijedio/la je Tweet
Really glad to finally get a blogpost out about this. Hopefully this is useful and gives Red Teamers ideas on how to use the BYOI concept in their own payloads. If anyone is interested in a few more follow up posts about this will gladly oblige :)https://www.blackhillsinfosec.com/red-teamers-cookbook-byoi-bring-your-own-interpreter/ …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
RB_03121 proslijedio/la je TweetHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi
Čini se da učitavanje traje već neko vrijeme.
Twitter je možda preopterećen ili ima kratkotrajnih poteškoća u radu. Pokušajte ponovno ili potražite dodatne informacije u odjeljku Status Twittera.