Twitter | Pretraživanje | |
John Lambert
Distinguished Engineer, Microsoft Threat Intelligence Center, johnla(AT), **BEWARE There are Tech Support Scams that use my name **
4.027
Tweetovi
392
Pratim
29.690
Osobe koje vas prate
Tweetovi
John Lambert proslijedio/la je tweet
Pete Bryan 4 h
Have you looked at the Notebook features in but wanted to know more? Check out this deep dive of our Host Explorer Notebook to understand what it is doing and how to use it:
Reply Retweet Označi sa "sviđa mi se"
John Lambert 5 h
Odgovor korisniku/ci @Olympics
🆕hxxps://byteout.xyz/olympic/ad/index.html They aren't loading the rings logo from the website. Where did it go? reveals all!
Reply Retweet Označi sa "sviđa mi se"
John Lambert proslijedio/la je tweet
Mark Simos 2. velj
Need a Reference Architecture? Check out this one showing how technology enables this strategy/access model. Slide 14 of CISO Workshop Module 3
Reply Retweet Označi sa "sviđa mi se"
John Lambert proslijedio/la je tweet
Maurice de Jong 1. stu
📇 Good afternoon! In this blog I explain how we can authenticate using devicelogin from interactive Python code execution like Jupyter notebooks and utilize keyvault. 👇
Reply Retweet Označi sa "sviđa mi se"
John Lambert proslijedio/la je tweet
Tomi Tuominen 1. velj
This thread is pure gold for both ops and incident response folks.
Reply Retweet Označi sa "sviđa mi se"
John Lambert 31. sij
Odgovor korisniku/ci @JohnLaTwC
Amsi bypass by patching memory: 🔗
Reply Retweet Označi sa "sviđa mi se"
John Lambert 31. sij
Odgovor korisniku/ci @fritzfs
Themed PyQt rendering pandas dataframes.
Reply Retweet Označi sa "sviđa mi se"
John Lambert 31. sij
Odgovor korisniku/ci @JohnLaTwC
Unicode VBA for obfuscation purposes: 🔗d7987d5bfcd0d8fd206c45b5a83bc429e22759c414d427c8bf1236e7d573f7c3
Reply Retweet Označi sa "sviđa mi se"
John Lambert 31. sij
Odgovor korisniku/ci @bohops
Running unexpected things via manage-bde.wsf and COMSPEC 🔗 🤜🤛
Reply Retweet Označi sa "sviđa mi se"
John Lambert 31. sij
Odgovor korisniku/ci @JohnLaTwC
Maldocs that launch code via CreateShortcut and SendKeys 🔗 🔗
Reply Retweet Označi sa "sviđa mi se"
John Lambert 31. sij
Follow Friday on interesting VT Submitter Ids. My first is ec31b410 uploading from Denmark. Examples in this thread
Reply Retweet Označi sa "sviđa mi se"
John Lambert 31. sij
Reply Retweet Označi sa "sviđa mi se"
John Lambert 30. sij
Odgovor korisniku/ci @CristinGoodwin @CISAKrebs
JIFF
Reply Retweet Označi sa "sviđa mi se"
John Lambert 30. sij
Malware that just quits? I think there's more to the formula in this maldoc. reveals all cc/ 🔗
Reply Retweet Označi sa "sviđa mi se"
John Lambert 30. sij
Blue teamers, just watched this webinar by on how to use to hunt over data. Hypothesis formulation, graph investigation, notebooks, and more!
Reply Retweet Označi sa "sviđa mi se"
John Lambert 30. sij
Odgovor korisniku/ci @Olympics
🆕hxxps://transnesia.co.id/olympicfencingtoshiromutotokyo2020/
Reply Retweet Označi sa "sviđa mi se"
John Lambert 30. sij
Odgovor korisniku/ci @drhyrum
I like it with labels!
Reply Retweet Označi sa "sviđa mi se"
John Lambert 30. sij
That feeling when someone has just joined and you're looking forward to grabbing coffee with them.
Reply Retweet Označi sa "sviđa mi se"
John Lambert 29. sij
Odgovor korisniku/ci @Ledtech3 @plusvic
When you can pivot by submitter id, you can quickly find many more relevant samples. Combined with the other VT meta data, it makes perusing samples very easy.
Reply Retweet Označi sa "sviđa mi se"