Twitter | Search | |
Search Refresh
Roberto Rodriguez Sep 17
Happy to release the API-To-Event project 😊🍻A repo focused primarily on documenting the relationships between API functions and security events. Mapped to ⚔️ API-To-Event List: GitHub:
Reply Retweet Like
Roberto Rodriguez Sep 19
Happy to release the Threat Hunting with ETW events and  series! Part I: 🏄‍♀️🏄‍♂️ Installing SilkETW to consume events via the event log locally is out! Next, Shipping events to 😱 Thank you ⚔️
Reply Retweet Like
SANS Institute 5m
Webcast | @mbromileyDFIR Gary Fisk and Fayyaz Rajpari to walk through the maturity model and prepare you for each step of your hunting journey. Register:
Reply Retweet Like
Samir 37m
Guest & NT Authrity\Network Service or Local Service should'nt be in this log 4732, this change coupled with LimitBlankPasswordUse reg policy can provide a nice backdoor.
Reply Retweet Like
Bedrohungsjäger Sep 15
Python for Threat Hunters by Nishan Maharjan
Reply Retweet Like
Sudoka 19h
Today I learn that we can check an IP whether it is a honeypot or not by using . Now you can avoid the honeypots and concentrate in real systems. Please comment if you find a honeypot. 🙏
Reply Retweet Like
Pete Bryan Sep 18
We ran a webinar on with Sentinel this morning. If you missed it you can check out the recording here:
Reply Retweet Like
Alexandria Sep 19
ATT&CKcon 2.0 is being streamed live 10/29-10/30, 2019. Sign up here: 🕵️‍♀️
Reply Retweet Like
Roberto Rodriguez Sep 16
I started to play w/ CloudFormation last week, and it was easy to model and provision all the resources needed for my applications. Happy to release the BlackSmith Project⚔️! The Mordor 👿 Shire network is officially in AWS 😊🏹🍻
Reply Retweet Like
Ring3API Sep 19
Advanced Usage Scripting and Framework
Reply Retweet Like
Adam Sep 20
WerFault – command line switches v0.1
Reply Retweet Like
Active Countermeasures Sep 20
Awesome paper by on detecting when users are tunneling DNS over HTTPS. Huge problem as this breaks many security solutions. Thanks Drew for calling out as one of the possible solutions!
Reply Retweet Like
Might be or might not be from SoCal Sep 19
Hello all! OpenSOC is looking at starting a meetup in Austin. We are known for our "Blue Team CTF", but we rely on all aspects of security, devops and community to create, maintain and run OpenSOC.
Reply Retweet Like

Related searches

#cybersecurity · emotet · #dfir
securemind.se Sep 20
Two arrested in $10 million tech support scheme that 'preyed on the elderly' Suspects run tech support scam sites and made over $10m from over 7,500 victims by billing unneeded tech support fees.
Reply Retweet Like
JAMESWT Sep 13
This Week Samples ser.jonnalbandian.[com/lastupdate.zip? wws.christinedavies.[biz you.cypressstakeyouth.[com adp.mjmentertainment.[com etc..
Reply Retweet Like
GBHackers on Security Sep 17
Reply Retweet Like
Ring3API Sep 19
Reply Retweet Like
Limor Elbaz Sep 19
Part 2 of 's great guide on using for
Reply Retweet Like
SANS DFIR 3h
Do you have innovative tools, tactics or techniques that can be shared with your community? Submit your proposal to speak at the Threat Hunting & IR Summit ! 👉 CFP closes 9/27| Summit info:
Reply Retweet Like
Cisco Security Sep 20
Explore the ins and outs of , and why it should be considered a necessity in our latest report.
Reply Retweet Like