Tuesday, January 31, 2023

Favorite tweets

Labels: ,

from Twitter https://twitter.com/TheClearCider

January 31, 2023 at 12:36AM
via IFTTT

Over the weekend, a svelte, mouth-breathing, Trump sported two makeup covered bandaids across the top of his hands. What do you think those were for? 🩹 https://t.co/V0OIePRLvX

TheClearCider

https://twitter.com/TheClearCider/status/1620294923441537024

https://t.co/V0OIePRLvX

Monday, January 30, 2023

Favorite tweets

Labels: ,

from Twitter https://twitter.com/profxeni

January 30, 2023 at 06:49AM
via IFTTT

r/t "Sandworm APT group hit Ukrainian news agency with five data wipers" https://t.co/SEOP9baqym

profxeni

https://twitter.com/profxeni/status/1620026515722326017

https://t.co/SEOP9baqym

Sunday, January 29, 2023

Favorite tweets

Labels: ,

from Twitter https://twitter.com/profxeni

January 29, 2023 at 08:37AM
via IFTTT

r/t Yaralyzer - Visually Inspect And Force Decode YARA And Regex Matches Found In Both Binary And Text Data, With Colors https://t.co/RgUA8PQtlv https://t.co/jln6NLhuzE

profxeni

https://twitter.com/profxeni/status/1619691108967264256

https://t.co/RgUA8PQtlv

Friday, January 27, 2023

Favorite tweets

Labels: ,

from Twitter https://twitter.com/cyb3rops

January 27, 2023 at 11:09AM
via IFTTT

We've decided to share the #YARA rules to detect malicious #OneNote documents / attachments (.one) - as seen in #Phishing attacks - with the community It's the output of today's 2h research session with my team and covers many in-the-wild samples https://t.co/O1hAv6Ai50 https://t.co/LNO2Fhp0lP

cyb3rops

https://twitter.com/cyb3rops/status/1619004667186511873

https://t.co/O1hAv6Ai50

Tuesday, January 24, 2023

Favorite tweets

Labels: ,

from Twitter https://twitter.com/cyb3rops

January 24, 2023 at 10:38AM
via IFTTT

Interesting .eml > .vhdx > .rar > .lnk > .hta phishing targeting Russia - interesting VHDX attachment - mounts with double click, just like .iso Sample https://t.co/la2YtZkvUG https://t.co/ROkUSaokhP Related https://t.co/Jq2VSB0UQn https://t.co/2fX3EHoeYP

cyb3rops

https://twitter.com/cyb3rops/status/1617909598727409665

https://t.co/la2YtZkvUG

Favorite tweets

Labels: ,

from Twitter https://twitter.com/UK_Daniel_Card

January 24, 2023 at 07:40AM
via IFTTT

@cyb3rops :) in MDE #KQL something like this would work https://t.co/06gswweDbb

UK_Daniel_Card

https://twitter.com/UK_Daniel_Card/status/1617864794459230211

https://t.co/06gswweDbb

Favorite tweets

Labels: ,

from Twitter https://twitter.com/cyb3rops

January 24, 2023 at 07:34AM
via IFTTT

This is how we can write a simple filename IOC pattern with filter in the format I use in THOR and LOKI scanners pattern;score;filter This can be used to trigger on files located in unusual folders ADModule tweet https://t.co/RFtpJlOzgF https://t.co/3J8fagZjTm

cyb3rops

https://twitter.com/cyb3rops/status/1617863397504057344

https://t.co/RFtpJlOzgF

Sunday, January 22, 2023

Favorite tweets

Labels: ,

from Twitter https://twitter.com/igorsushko

January 21, 2023 at 03:11PM
via IFTTT

#Kremlin propagandist decided to visit #Soledar in #Ukraine to prove the town is under full Russian control. https://t.co/PiaEWBFLH2

igorsushko

https://twitter.com/igorsushko/status/1616891317203922944

https://t.co/PiaEWBFLH2

Friday, January 20, 2023

Favorite tweets

Labels: ,

from Twitter https://twitter.com/DirectoryRanger

January 20, 2023 at 10:21AM
via IFTTT

SilentHound. tool to quietly enumerate an Active Directory Domain via LDAP parsing users, admins, groups, etc. https://t.co/IRml1YggV9

DirectoryRanger

https://twitter.com/DirectoryRanger/status/1616455806416818177

https://t.co/IRml1YggV9

Thursday, January 19, 2023

Favorite tweets

Labels: ,

from Twitter https://twitter.com/cyb3rops

January 19, 2023 at 03:30PM
via IFTTT

That’s handy https://t.co/lGIEQqQ7dl

cyb3rops

https://twitter.com/cyb3rops/status/1616171180997623825

https://t.co/lGIEQqQ7dl

Favorite tweets

Labels: ,

from Twitter https://twitter.com/cyb3rops

January 19, 2023 at 11:32AM
via IFTTT

YARA rule to detect the exploitation of ManageEngine ServiceDesk CVE-2022-47966 Rule https://t.co/u5qFRMXTUN Report by @Horizon3Attack https://t.co/GMA0EVMa5b https://t.co/KX7YJH4H8H

cyb3rops

https://twitter.com/cyb3rops/status/1616111305299038208

https://t.co/u5qFRMXTUN

Favorite tweets

Labels: ,

from Twitter https://twitter.com/profxeni

January 19, 2023 at 07:37AM
via IFTTT

r/t DragonCastle - A PoC That Combines AutodialDLL Lateral Movement Technique And SSP To Scrape NTLM Hashes From LSASS Process https://t.co/5M5bL2YyOE https://t.co/LILhQ4NBYO

profxeni

https://twitter.com/profxeni/status/1616052242007883780

https://t.co/5M5bL2YyOE

Monday, January 16, 2023

Favorite tweets

Labels: ,

from Twitter https://twitter.com/profxeni

January 16, 2023 at 08:29AM
via IFTTT

r/t LATMA - Lateral Movement Analyzer Tool https://t.co/SIB8PPJmAB https://t.co/I6n0Zd2Thc

profxeni

https://twitter.com/profxeni/status/1614978163779702784

https://t.co/SIB8PPJmAB

Wednesday, January 11, 2023

Favorite tweets

Labels: ,

from Twitter https://twitter.com/UK_Daniel_Card

January 11, 2023 at 07:01AM
via IFTTT

Office 365 Security Testing Tools https://t.co/6trcxrU0vE

UK_Daniel_Card

https://twitter.com/UK_Daniel_Card/status/1613144183283269632

https://t.co/6trcxrU0vE

Thursday, January 5, 2023

Favorite tweets

Labels: ,

from Twitter https://twitter.com/profxeni

January 05, 2023 at 08:17AM
via IFTTT

r/t ExchangeFinder - Find Microsoft Exchange Instance For A Given Domain And Identify The Exact Version https://t.co/HeKWNf6yaU https://t.co/aq8Bkt7g7C

profxeni

https://twitter.com/profxeni/status/1610988773537611777

https://t.co/HeKWNf6yaU
Subscribe to: Posts (Atom)
Web Analytics