Thursday, October 31, 2024

Favorite tweets


from Twitter https://twitter.com/shannonrwatts

October 28, 2024 at 01:26PM
via IFTTT

In the voting booth, women still have the right to choose. New and important ad from @VoteCommon featuring Julia Roberts reminds women that no one will know who they voted for. Pass it on. https://t.co/XALnryVPNm

shannonrwatts

https://twitter.com/shannonrwatts/status/1850891818256445592

https://ift.tt/BpRk7eJ

Sunday, October 20, 2024

Favorite tweets


from Twitter https://twitter.com/ShouldHaveCat

October 19, 2024 at 09:29PM
via IFTTT

The True Alpha Pet…🐈 https://t.co/CSFeY20CCw

ShouldHaveCat

https://twitter.com/ShouldHaveCat/status/1847751850621067407

https://ift.tt/cdBDMTh

Thursday, October 17, 2024

Favorite tweets


from Twitter https://twitter.com/Acyn

October 17, 2024 at 09:20PM
via IFTTT

Kamala Harris: Oh, you guys are at the wrong rally. I think you meant to go to the smaller one down the street https://t.co/tjhbDB9m3R

Acyn

https://twitter.com/Acyn/status/1847024907521347765

https://ift.tt/uD8evJb

Tuesday, September 10, 2024

Favorite tweets


from Twitter https://twitter.com/cyb3rops

September 10, 2024 at 07:22AM
via IFTTT

.@bunsofwrath12 shared some incredibly useful PowerShell scripts with us for working with @thor_scanner in a forensic lab setting https://t.co/Jj8nU7rmmS https://t.co/dyDDzcwSs3

cyb3rops

https://twitter.com/cyb3rops/status/1833405625344168340

https://ift.tt/tpLFd5l

Friday, August 30, 2024

Favorite tweets


from Twitter https://twitter.com/clintgibler

August 29, 2024 at 07:00PM
via IFTTT

🗒️ Ransomware Tool Matrix A resource containing all the tools each ransomware gangs uses By @BushidoToken https://t.co/64lhoLsW3P https://t.co/PfRC23krj7

clintgibler

https://twitter.com/clintgibler/status/1829232602533785755

https://ift.tt/L4cFf6K

Monday, August 26, 2024

Favorite tweets


from Twitter https://twitter.com/Dj_gaberr

August 26, 2024 at 01:18PM
via IFTTT

@MSFT365Status Microsoft Defender Quarantine for email is false flagging pictures from email signatures as malware any reason why?

Dj_gaberr

https://twitter.com/Dj_gaberr/status/1828059497232756823

Friday, August 23, 2024

Favorite tweets


from Twitter https://twitter.com/BarackObama

August 23, 2024 at 04:16AM
via IFTTT

Tonight, @KamalaHarris showed the world what I have known to be true. She is ready on day one to be President and represents the best of America. Let’s get to work. https://t.co/b4fejucl7F

BarackObama

https://twitter.com/BarackObama/status/1826835771933798823

https://twitter.com/BarackObama/status/1826835771933798823/photo/1

Friday, August 16, 2024

Favorite tweets


from Twitter https://twitter.com/maiamindel

August 15, 2024 at 02:53PM
via IFTTT

the woman meeting obama (in 2011) is the little girl from the painting https://t.co/8KQEvs3xZ0 https://t.co/uvkUX33gc4

maiamindel

https://twitter.com/maiamindel/status/1824097209354273016

https://twitter.com/maiamindel/status/1824097209354273016/photo/1

Friday, July 26, 2024

Favorite tweets


from Twitter https://twitter.com/BarackObama

July 26, 2024 at 09:01AM
via IFTTT

Earlier this week, Michelle and I called our friend @KamalaHarris. We told her we think she’ll make a fantastic President of the United States, and that she has our full support. At this critical moment for our country, we’re going to do everything we can to make sure she wins in… https://t.co/4p9s0YmYvM https://t.co/0UIS0doIbA

BarackObama

https://twitter.com/BarackObama/status/1816760809193677069

https://twitter.com/i/web/status/1816760809193677069

Favorite tweets


from Twitter https://twitter.com/ladygaga

July 26, 2024 at 06:27PM
via IFTTT

I feel so completely grateful to have been asked to open the Paris @Olympics 2024 this year. I am also humbled to be asked by the Olympics organizing committee to sing such a special French song—a song to honor the French people and their tremendous history of art, music, and… https://t.co/3QDU6f8hHW https://t.co/FMNyiosHUR

ladygaga

https://twitter.com/ladygaga/status/1816903201020583980

https://twitter.com/i/web/status/1816903201020583980

Monday, July 22, 2024

Favorite tweets


from Twitter https://twitter.com/harris__wins

July 21, 2024 at 06:36PM
via IFTTT

BREAKING: This Kamala Harris ad from 2020 still goes hard. Retweet to ensure every American sees it. https://t.co/PM1SZLcMG7

harris__wins

https://twitter.com/harris__wins/status/1815093579078861256

https://twitter.com/AdamJSmithGA/status/1814723038564192535/video/1

Friday, July 19, 2024

Favorite tweets


from Twitter https://twitter.com/George_Kurtz

July 19, 2024 at 03:07PM
via IFTTT

Today was not a security or cyber incident. Our customers remain fully protected. We understand the gravity of the situation and are deeply sorry for the inconvenience and disruption. We are working with all impacted customers to ensure that systems are back up and they can… https://t.co/4HDiuIixUw

George_Kurtz

https://twitter.com/George_Kurtz/status/1814316045185822981

https://twitter.com/i/web/status/1814316045185822981

Sunday, June 23, 2024

Favorite tweets


from Twitter https://twitter.com/webernetz

June 21, 2024 at 08:29AM
via IFTTT

Uh, I was not aware that there is a terminal version of #Wireshark called termshark. Nice. Much easier to troubleshoot small stuff compared to tcpdump. You can even use your mouse! https://t.co/IsVeyCZdoR

webernetz

https://twitter.com/webernetz/status/1804068992107061443

https://twitter.com/webernetz/status/1804068992107061443/photo/1

Favorite tweets


from Twitter https://twitter.com/0xor0ne

June 23, 2024 at 07:30AM
via IFTTT

Get started with CTFs related to Satellites hacking (resources collection) Satellite Hacking Demystified: https://t.co/hGDo9jKO7W Hack-a-sat writeups: https://t.co/PIkGXuAKSN Hack-a-sat players corner: https://t.co/aQwVw117nU #satellite https://t.co/b8jIiHOmlr

0xor0ne

https://twitter.com/0xor0ne/status/1804778932064919894

https://ift.tt/tGIspX3

Favorite tweets


from Twitter https://twitter.com/lauriewired

June 22, 2024 at 04:56PM
via IFTTT

Taking a break from reverse engineering twitch streams for the next week or so, because I'll be presenting at REcon 2024! Here's a small snippet of what I've been working on😏 https://t.co/d1kPwVpeHM

lauriewired

https://twitter.com/lauriewired/status/1804559205644603531

https://twitter.com/lauriewired/status/1804559205644603531/photo/1

Friday, June 21, 2024

Favorite tweets


from Twitter https://twitter.com/TropicalTidbits

June 17, 2024 at 04:44PM
via IFTTT

The sprawling gyre now entering the southern Gulf of Mexico has been labeled "Invest #91L" by @NHC_Atlantic. The system will move ashore over northeastern #Mexico and #Texas between Wednesday morning and Thursday morning, bringing with it a large area of heavy rains that could… https://t.co/avN1O4VmzM https://t.co/h4bZmaRIUd

TropicalTidbits

https://twitter.com/TropicalTidbits/status/1802744120651440367

https://twitter.com/i/web/status/1802744120651440367

Monday, June 10, 2024

Favorite tweets


from Twitter https://twitter.com/jaredcatkinson

June 10, 2024 at 02:35PM
via IFTTT

@Mandiant It’d be useful to know whether the compromised accounts already had effective admin access (ACCOUNTADMIN or similar) or not. The reporting implies as much since it doesn’t discuss identity abuse primitives, but it doesn’t explicitly state either way.

jaredcatkinson

https://twitter.com/jaredcatkinson/status/1800174979004453148

Monday, June 3, 2024

Favorite tweets


from Twitter https://twitter.com/MsftSecIntel

June 03, 2024 at 03:51PM
via IFTTT

Prolific Russian influence actors tracked by Microsoft as Storm-1679 and Storm-1099 have pivoted their operations since June 2023 to focus on the Olympics. Learn more from this report published by Microsoft Threat Analysis Center (MTAC): https://t.co/ESwObO1NNd

MsftSecIntel

https://twitter.com/MsftSecIntel/status/1797657400469598639

https://ift.tt/hKEvMeq

Monday, May 20, 2024

Favorite tweets


from Twitter https://twitter.com/cyber_edu_jp

May 20, 2024 at 08:25PM
via IFTTT

YARA-X - The pattern matching swiss knife for malware researchers, and everyone else. https://t.co/6FrUD7fnro YARA is dead, long live YARA-X ~ VirusTotal Blog https://t.co/8bGoygu3Kt

cyber_edu_jp

https://twitter.com/cyber_edu_jp/status/1792652791028363427

https://ift.tt/fC3cjDv

Favorite tweets


from Twitter https://twitter.com/cspanwj

May 19, 2024 at 01:03PM
via IFTTT

We invite author Dmitri Alperovitch to discuss his book, "World on the Brink: How America Can Beat China in the Race for the Twenty-First Century" Watch here: https://t.co/8M6lXgp6x9 https://t.co/OJYS31fpVe

cspanwj

https://twitter.com/cspanwj/status/1792179338311245914

https://ift.tt/3pb8qcK

Favorite tweets


from Twitter https://twitter.com/virustotal

May 20, 2024 at 09:53AM
via IFTTT

"YARA is dead, long live YARA-X!" 🎉 After 15 years, YARA gets a full rewrite in Rust, bringing enhanced performance, security, and user experience. Dive into the details in latest blog post by @plusvic : https://t.co/IGRT65cBD3 https://t.co/FAaNk3zkFR

virustotal

https://twitter.com/virustotal/status/1792493754202362009

https://ift.tt/iem54At

Thursday, May 9, 2024

Favorite tweets


from Twitter https://twitter.com/thestustustudio

May 08, 2024 at 11:17PM
via IFTTT

Yesterday at George Washington University's All Eyes on Rafah Rally, Rafiki Morris of Black Alliance for Peace and the All-African People's Revolutionary Party gave one of the most vitriolic speeches I have ever heard. Morris is not a professor at the school, but a local… https://t.co/PdhzdBMwRP https://t.co/cT310vqzOO

thestustustudio

https://twitter.com/thestustustudio/status/1788347646249152702

https://twitter.com/i/web/status/1788347646249152702

Thursday, May 2, 2024

Favorite tweets


from Twitter https://twitter.com/MichalKoczwara

April 30, 2024 at 06:42PM
via IFTTT

🇰🇵Looks like Lazarus (APT38) is well prepared👍 New infra and more fakes on Linkedin🥷 /fenbushi.private-meet.online /private-meet.online @Intel_Ops_io https://t.co/K4rFLSc9UI

MichalKoczwara

https://twitter.com/MichalKoczwara/status/1785379113517154732

https://twitter.com/MichalKoczwara/status/1785379113517154732/photo/1

Monday, April 29, 2024

Favorite tweets


from Twitter https://twitter.com/wartranslated

April 28, 2024 at 10:19AM
via IFTTT

Russian-speaking man is in shock while observing columns of Western vehicles moving towards Poland, as he claims. https://t.co/5YhpZBBcqN

wartranslated

https://twitter.com/wartranslated/status/1784527883488096326

https://twitter.com/wartranslated/status/1784527883488096326/video/1

Monday, April 1, 2024

Favorite tweets


from Twitter https://twitter.com/malmoeb

March 31, 2024 at 08:54AM
via IFTTT

I 💙 xlsxgrep. Here, I'm searching for Bitcoin addresses in a bunch of Excel files: xlsxgrep -i -P ^(bc1|[13])[a-zA-HJ-NP-Z0-9]{25,39}$ * "xlsxgrep is a CLI tool to search text in XLSX, XLS, CSV, TSV and ODS files. It works similarly to Unix/GNU Linux grep." [1] Go and get it:… https://t.co/5jVL8loy4d https://t.co/ySAzrQT5R9

malmoeb

https://twitter.com/malmoeb/status/1774359704757583967

https://twitter.com/i/web/status/1774359704757583967

Saturday, March 30, 2024

Favorite tweets


from Twitter https://twitter.com/Malwar3Ninja

March 30, 2024 at 12:00PM
via IFTTT

[https://t.co/otlIKKsosi] ⚠️ Resources for responding to #CVE-2024-3094 1. Detection script https://t.co/CAwuKKaZ62 2. Detailed analysis along with exploit code and detection https://t.co/y7mzyeHzS0 3. #ThreatHunt query https://t.co/uZn6OTFuTW #threatintel #DFIR https://t.co/iOfzQdzdIl

Malwar3Ninja

https://twitter.com/Malwar3Ninja/status/1774043981208301749

http://Threatview.io

Favorite tweets


from Twitter https://twitter.com/Malwar3Ninja

March 30, 2024 at 03:41PM
via IFTTT

Check if impacted by CVE-2024-3094 ❓ ❌ xz -V ✔️ strings /usr/local/bin/xz | grep "(XZ Utils)" ✔️strings `which xz` | grep "(XZ Utils" ✔️for xz_p in $(type -a xz | awk '{print $NF}' | uniq); do strings "$xz_p" | grep "xz (XZ Utils)" || echo "No match found for $xz_p"; done https://t.co/jDxSi2n5wQ

Malwar3Ninja

https://twitter.com/Malwar3Ninja/status/1774099755381170340

https://twitter.com/Malwar3Ninja/status/1774043981208301749

Favorite tweets


from Twitter https://twitter.com/cyb3rops

March 30, 2024 at 10:41AM
via IFTTT

Here is my first set of #YARA rules to detect the backdoored XZ packages Report https://t.co/jc7kA4tFsv Rules https://t.co/0k8gqZxHF9 #XZ #XZutil https://t.co/XYhGW1FSGt

cyb3rops

https://twitter.com/cyb3rops/status/1774024044288806987

https://ift.tt/pXRHEbq

Wednesday, March 13, 2024

Favorite tweets


from Twitter https://twitter.com/sans_isc

March 13, 2024 at 08:31AM
via IFTTT

Using ChatGPT to Deobfuscate Malicious Scripts https://t.co/a8y73V8qKb

sans_isc

https://twitter.com/sans_isc/status/1767830794704175324

https://i5c.us/d30740

Saturday, February 17, 2024

Favorite tweets


from Twitter https://twitter.com/cyb3rops

February 17, 2024 at 09:57AM
via IFTTT

I wrote a YARA rule designed to identify emails attempting to exploit CVE-2024-21413, a vulnerability in Microsoft Outlook that permits the unauthorized acquisition of NTLM credentials #100daysofYARA #YARA https://t.co/RhIcyltkKV https://t.co/rSATinTuhk

cyb3rops

https://twitter.com/cyb3rops/status/1758792873254744344

https://ift.tt/JaIsboy

Favorite tweets


from Twitter https://twitter.com/UK_Daniel_Card

February 16, 2024 at 10:17AM
via IFTTT

#How to PCAP without wireshark on Windows #start a capture pktmon start -c -f PktMon.etl #view the stats pktmon counters #sleep for 60 seconds sleep 60 #Stop the Capture pktmon stop #convert it to PCAP pktmon etl2pcap PktMon.etl --out capture.pcap https://t.co/vFzFuE01f3

UK_Daniel_Card

https://twitter.com/UK_Daniel_Card/status/1758435515563446606

https://twitter.com/UK_Daniel_Card/status/1758435515563446606/photo/1

Saturday, February 10, 2024

Favorite tweets


from Twitter https://twitter.com/Tarquin_Helmet

February 09, 2024 at 09:20PM
via IFTTT

Nate White @Ipitythepoorfo1 https://t.co/zbkjjpQDTN

Tarquin_Helmet

https://twitter.com/Tarquin_Helmet/status/1756065557621690390

https://twitter.com/Tarquin_Helmet/status/1756065557621690390/photo/1

Favorite tweets


from Twitter https://twitter.com/matrosov

February 09, 2024 at 08:38PM
via IFTTT

We just released our latest REsearch insights on exploiting UEFI spec vulnerabilities on ARM and x86 CPUs. Our Binarly Transparency Platform discovered all these bugs. All the related ARM tools and PoCs are out now. Check it: https://t.co/SQe26R9BO0 https://t.co/jIb5BlkW67

matrosov

https://twitter.com/matrosov/status/1756054958028300630

https://ift.tt/DCl3wbG

Monday, January 29, 2024

Favorite tweets


from Twitter https://twitter.com/cyb3rops

January 29, 2024 at 08:33AM
via IFTTT

"DFIR Team Support" (2024, colorized) https://t.co/on05AfnVfB

cyb3rops

https://twitter.com/cyb3rops/status/1751886277195022666

https://twitter.com/cyb3rops/status/1751886277195022666/photo/1

Monday, January 8, 2024

Favorite tweets


from Twitter https://twitter.com/AnFam17

January 08, 2024 at 06:39AM
via IFTTT

#100DaysofYara Day 7 and Day 8: Going a little easy this time... For these two days, we will cover the rules for #IllyrianStealer (another mundane .NET stealer) and the most recent version of #RaccoonStealer (v2.3.1.1) IllyrianStealer: https://t.co/RIJ8wmyO5A RaccoonStealer:… https://t.co/u9e6SOIR8x https://t.co/5zGBzZtIhu

AnFam17

https://twitter.com/AnFam17/status/1744247453119910228

https://ift.tt/rlPhwB2

Favorite tweets


from Twitter https://twitter.com/hasherezade

January 08, 2024 at 03:50PM
via IFTTT

Happy New Year! I have for you a new #PEbear (v0.6.7) with some of the requested features, such as strings, and patterns searching. Plus other improvements & bugfixes. Check it out! https://t.co/AsAbJGR9nb 🐻💙 https://t.co/fuPQoqANva

hasherezade

https://twitter.com/hasherezade/status/1744386167976423700

https://ift.tt/StfLmaV

Sunday, January 7, 2024

Favorite tweets


from Twitter https://twitter.com/angealbertini

May 05, 2023 at 10:13AM
via IFTTT

Update https://t.co/4XVNgNrxgr https://t.co/cZkh63HFpZ

angealbertini

https://twitter.com/angealbertini/status/1654429033042411523

https://twitter.com/angealbertini/status/1654429033042411523/photo/1

Favorite tweets


from Twitter https://twitter.com/angealbertini

December 19, 2023 at 02:42PM
via IFTTT

Most PE executables only have a DOS stub, but Robert Xiao combined DOOM Dos and Windows executables into a single universal file. Advanced merge of genuine Dos headers, relocations, DOS4/GW headers and PE file. https://t.co/RfMejxAJK4 https://t.co/lR5IILcyKs

angealbertini

https://twitter.com/angealbertini/status/1737121148368810169

https://ift.tt/ouFi4bZ

Favorite tweets


from Twitter https://twitter.com/fr0gger_

January 06, 2024 at 05:28AM
via IFTTT

#100DaysOfYara Day 6: Yara can be used to access specific data at a given position. 👇 This feature is often used to identify Magic Numbers (used to determine the file format) to match your rule against a specific file type, such as a PE (0x4D5A), for example. Today, no… https://t.co/6O7Ld9iLce https://t.co/ST0vIJc1q4

fr0gger_

https://twitter.com/fr0gger_/status/1743504876745998655

https://twitter.com/i/web/status/1743504876745998655

Sunday, November 26, 2023

Favorite tweets


from Twitter https://twitter.com/MsftSecIntel

November 22, 2023 at 05:10PM
via IFTTT

Microsoft has uncovered a supply chain attack by North Korean threat actor Diamond Sleet (ZINC) involving the modification of an installer file from software maker CyberLink. The payload calls back to attacker infrastructure for instructions. Learn more: https://t.co/iKatpcMN7G

MsftSecIntel

https://twitter.com/MsftSecIntel/status/1727373881206296891

https://ift.tt/pdLnF2g

Favorite tweets


from Twitter https://twitter.com/embee_research

August 24, 2023 at 09:00AM
via IFTTT

🔥Malware Analysis with @HuntressLabs 🔥 Watch as we analyse a bloated (1.5GB) Golang file and dynamically extract an Xworm payload. We'll touch on Procmon, Process Hacker, Entropy Analysis, Debloating, Breakpoints, Debuggers and lots more🤠 [1/14] 🧵 #Malware #Golang https://t.co/NCs1Eh6mTt

embee_research

https://twitter.com/embee_research/status/1694635899903152619

https://twitter.com/embee_research/status/1694635899903152619/photo/1

Monday, November 20, 2023

Favorite tweets


from Twitter https://twitter.com/cyb3rops

November 19, 2023 at 09:00PM
via IFTTT

Here is a list of researchers and offensive security accounts I recommend following, based on their consistently excellent content and objective, respectful interactions: @wdormann @HackingLZ @FuzzySec @mariuszbit @0gtweet @ippsec

cyb3rops

https://twitter.com/cyb3rops/status/1726344841540346183

Friday, November 10, 2023

Favorite tweets


from Twitter https://twitter.com/uuallan

November 10, 2023 at 07:47PM
via IFTTT

US Treasuries Trading Affected by Ransomware Hack via ⁦@MihirBagwe⁩ & ⁦@daveperera⁩ https://t.co/DHwWu4gI0J

uuallan

https://twitter.com/uuallan/status/1723064796071821760

https://ift.tt/MqhVSZN

Favorite tweets


from Twitter https://twitter.com/wimremes

November 09, 2023 at 06:00PM
via IFTTT

I just learned that apps like Snapchat are giving push notifications WHEN SOMEBODY IS TYPING and all I want to know is why the product manager that decided this was a great idea is still alive with all 4 limbs intact.

wimremes

https://twitter.com/wimremes/status/1722675526077165897

Monday, November 6, 2023

Favorite tweets


from Twitter https://twitter.com/JeffreyAppel7

September 14, 2023 at 06:11PM
via IFTTT

NEW BLOG: Common mistakes during Microsoft Defender for Endpoint (MDE) deployments. What are typical common mistakes during Defender for Endpoint deployment? In this blog, I will explain common mistakes/misconfigurations. Blog: https://t.co/hJqm6OD1UP #MDE #M365D

JeffreyAppel7

https://twitter.com/JeffreyAppel7/status/1702384606798860696

https://ift.tt/tMzDJpE

Favorite tweets


from Twitter https://twitter.com/MsftSecIntel

September 14, 2023 at 04:33PM
via IFTTT

Since February 2023, Microsoft has observed password spray activity by Iranian threat actor Peach Sandstorm (HOLMIUM) against thousands of orgs, likely an attempt to collect intelligence to support Iranian interests. Get TTPs, mitigation, hunting guidance: https://t.co/Qdz3JIsIzc

MsftSecIntel

https://twitter.com/MsftSecIntel/status/1702359807095673106

https://ift.tt/dYv8Kgt

Favorite tweets


from Twitter https://twitter.com/lauriewired

March 22, 2023 at 03:39PM
via IFTTT

Happy to announce the release of my JADX dynamic scripting plugin, JADXecute. Now you write and share scripts to automate your Android APK analysis! #ReverseEngineering https://t.co/J3cNWZ1lBT https://t.co/aJDLbKPSao

lauriewired

https://twitter.com/lauriewired/status/1638566067198128128

https://ift.tt/XRjHOxv

Favorite tweets


from Twitter https://twitter.com/halvarflake

June 08, 2023 at 08:56AM
via IFTTT

I tried ChatGPT-4 and I am not impressed. https://t.co/WLidBjW78b

halvarflake

https://twitter.com/halvarflake/status/1666730978482462728

https://ift.tt/zwA9IeK

Favorite tweets


from Twitter https://twitter.com/x0rz

April 19, 2023 at 06:17AM
via IFTTT

Microsoft Threat Actor Naming for Office 365 https://t.co/UBp8O9ljX8

x0rz

https://twitter.com/x0rz/status/1648571522750070787

https://twitter.com/x0rz/status/1648571522750070787/photo/1

Tuesday, October 24, 2023

Favorite tweets


from Twitter https://twitter.com/stefant

October 23, 2023 at 09:33AM
via IFTTT

At the beginning of the infection chain, the victim receives an invisible iMessage attachment with a zero-click exploit. https://t.co/Tqq7HsCcyT

stefant

https://twitter.com/stefant/status/1716447708376924266

https://t.co/Tqq7HsCcyT

Sunday, October 22, 2023

Favorite tweets


from Twitter https://twitter.com/ale_sp_brazil

October 22, 2023 at 05:09PM
via IFTTT

Although I have permanently transitioned to vulnerability research, I have plans to release new versions of Malwoverview and continue maintaining it after I finish writing the five pending articles: https://t.co/SfVTmQUgEC There've been 91K downloads so far. #threathunting https://t.co/RZF8eJ7fXa https://t.co/Ari00pdL9w

ale_sp_brazil

https://twitter.com/ale_sp_brazil/status/1716200038244794547

https://t.co/SfVTmQUgEC

Favorite tweets


from Twitter https://twitter.com/splinter_code

October 21, 2023 at 07:43PM
via IFTTT

Do you want to start the RemoteRegistry service without Admin privileges? Just write into the "winreg" named pipe 👇 https://t.co/1XkxK0FfbU

splinter_code

https://twitter.com/splinter_code/status/1715876413474025704

https://t.co/1XkxK0FfbU

Thursday, October 19, 2023

Favorite tweets


from Twitter https://twitter.com/virusbtn

October 19, 2023 at 05:09AM
via IFTTT

Palo Alto Networks' Unit 42 researchers analyse Munchkin, a new utility that allows BlackCat operators to propagate the payload to remote machines and shares on a victim organization network. https://t.co/3l0QwWep1Y https://t.co/jYK8ure5el

virusbtn

https://twitter.com/virusbtn/status/1714931643025072379

https://t.co/3l0QwWep1Y

Favorite tweets


from Twitter https://twitter.com/techspence

October 18, 2023 at 09:08PM
via IFTTT

🧵Pentesting from windows is sometimes like.. Step 1. Login Step 2. Open Explorer Step 3. Open file share Step 4. Search file share for “vmdk” Step 5. Download the sam system and security hive using volumiser (cc @_EthicalChaos_) Step 6. Extract hashes with secretsdump 1/3

techspence

https://twitter.com/techspence/status/1714810607684206623

https://ift.tt/VwLfJZW

Tuesday, October 17, 2023

Favorite tweets


from Twitter https://twitter.com/NSA_CSDirector

October 17, 2023 at 12:08PM
via IFTTT

I really believe that if your infrastructure can’t survive a user clicking a link, you are doomed. I’m the director of cybersecurity at NSA and you can definitely craft and email link I will click… https://t.co/O2IzrMcXuM https://t.co/tkwSKmK3VV

NSA_CSDirector

https://twitter.com/NSA_CSDirector/status/1714312343461482562

https://t.co/O2IzrMcXuM

Favorite tweets


from Twitter https://twitter.com/cyb3rops

October 17, 2023 at 05:01AM
via IFTTT

Ransomware Tracker https://t.co/NUHXP8HDUg https://t.co/3qIGDMaQal

cyb3rops

https://twitter.com/cyb3rops/status/1714204895476068689

https://t.co/NUHXP8HDUg

Monday, October 16, 2023

Favorite tweets


from Twitter https://twitter.com/0xNarek

October 16, 2023 at 11:36AM
via IFTTT

⚡ The NTLM Protocol Animated! 🔴 Quick & Simple Explanation: 🔻 NTLM_NEGOTIATE You type your credentials on your machine (called Client💻), it sends a request containing your username to the Server🏛 you want to authenticate to. 🔻 NTLM_CHALLENGE The Server🏛 generates a… https://t.co/7ydb3Fr3EX https://t.co/QBaf5kgMlk

0xNarek

https://twitter.com/0xNarek/status/1713942045201412451

https://t.co/7ydb3Fr3EX

Sunday, October 15, 2023

Favorite tweets


from Twitter https://twitter.com/hardik05

October 14, 2023 at 11:32AM
via IFTTT

Just read amazing blog on webp CVE-2023-4863. creating poc for this: https://t.co/UizhHq1um5 have required lot of efforts and many might have just given up or frustrated with this!

hardik05

https://twitter.com/hardik05/status/1713216139545760099

https://t.co/UizhHq1um5

Saturday, October 14, 2023

Favorite tweets


from Twitter https://twitter.com/fabian_bader

October 14, 2023 at 05:40AM
via IFTTT

With Microsoft #Graph Activity Log now in public preview let's talk about reconnaissance detection. 📢In my latest blog post I dive deep into the logs and show how you can detect tools like #bloodhound and #PurpleKnight using this new log source. https://t.co/xPY5wyBEdN

fabian_bader

https://twitter.com/fabian_bader/status/1713127552762433746

https://t.co/xPY5wyBEdN

Friday, October 13, 2023

Favorite tweets


from Twitter https://twitter.com/Adam_Cyber

October 13, 2023 at 04:18PM
via IFTTT

There are a lot of hacktivist groups and known adversaries engaged in the cyber conflict around the #IsraelPalestineConflict. @CrowdStrike pulled together a graphic to highlight some of what we're seeing. https://t.co/emX92SI0EL

Adam_Cyber

https://twitter.com/Adam_Cyber/status/1712925728344268849

https://t.co/emX92SI0EL

Favorite tweets


from Twitter https://twitter.com/DrAzureAD

October 13, 2023 at 12:43PM
via IFTTT

Finally, Microsoft Graph Activity log in public preview!! https://t.co/kI67unx9A8

DrAzureAD

https://twitter.com/DrAzureAD/status/1712871802538807457

https://t.co/kI67unx9A8

Thursday, October 12, 2023

Favorite tweets


from Twitter https://twitter.com/NathanMcNulty

October 12, 2023 at 07:59PM
via IFTTT

When deploying Defender for Identity, have you been doing Install-ADServiceAccount for the gMSA? I have good news - it does absolutely nothing! 🥳 The note is both correct (no need to install) and incorrect (this has nothing to do with password rotation) https://t.co/EEapJICfgq https://t.co/HuhMRQAkk8

NathanMcNulty

https://twitter.com/NathanMcNulty/status/1712619034322337952

https://t.co/EEapJICfgq

Favorite tweets


from Twitter https://twitter.com/Securelist

October 12, 2023 at 08:59AM
via IFTTT

Our latest research into the #ToddyCat APT group shows they’re evolving their already honed strategies as well as introducing new loaders. We’ve also found that the group has developed new malware, designed to exfiltrate files from devices. Learn more ⇒ https://t.co/VkIn7BDLw8 https://t.co/z9kcihc92B

Securelist

https://twitter.com/Securelist/status/1712452965636637169

https://t.co/VkIn7BDLw8

Favorite tweets


from Twitter https://twitter.com/cyb_detective

October 12, 2023 at 06:37AM
via IFTTT

APIs for OSINT As a reminder, I have a Github repo with over a hundred APIs for automating dozens of different #osint tasks: collecting information about people, companies, etc. https://t.co/3LZWDWm17D If you don't know how to use APIs, read this: https://t.co/ZEHjKxiwRJ https://t.co/i5T8f2HQwB

cyb_detective

https://twitter.com/cyb_detective/status/1712417192178778204

https://t.co/3LZWDWm17D

Wednesday, October 11, 2023

Favorite tweets


from Twitter https://twitter.com/dcuthbert

October 11, 2023 at 04:45AM
via IFTTT

Bugs happen but it's rare you see a bug that grabs you so hard and makes you nod like a little dog.. CVE-2023-44487 did that for me good god what a bug and here's why

dcuthbert

https://twitter.com/dcuthbert/status/1712026660608827888

https://ift.tt/V1dsip4

Tuesday, October 10, 2023

Favorite tweets


from Twitter https://twitter.com/menscher

October 10, 2023 at 08:10AM
via IFTTT

The only bottleneck is server processing speed, which makes this an extreme load-test for the victim. Our monitoring measured one attack, coming into our global network via a global network of open proxies, at 398M requests per second! https://t.co/7yrtbbQAEE 2/3

menscher

https://twitter.com/menscher/status/1711715945339859298

https://t.co/7yrtbbQAEE

Favorite tweets


from Twitter https://twitter.com/0xNarek

October 10, 2023 at 04:52AM
via IFTTT

🦊 How To Use SOCKS Proxy With BurpSuite 🔴 Step 1 — Browser > Burp Proxy: First, you want to route your browser’s traffic to the Burp Proxy server. On Firefox, go to the network settings and add localhost:8080 as the local proxy (pro-tip: install FoxyProxy). On Chrome, (1/8) https://t.co/iCkZUuRzcF

0xNarek

https://twitter.com/0xNarek/status/1711666072687112644

https://t.co/iCkZUuRzcF

Favorite tweets


from Twitter https://twitter.com/Kostastsale

October 10, 2023 at 04:15AM
via IFTTT

This is a pretty nice graphic explaining how Kerberos Auth takes place. Useful to have as a reference when you have to explain and visualize attacks such as Pass The Ticket, Kerberoasting and AS-REP Roasting. Credit: @0xNarek 🙏🙏 https://t.co/wgyXSQvNFY

Kostastsale

https://twitter.com/Kostastsale/status/1711656782802874728

https://t.co/wgyXSQvNFY

Favorite tweets


from Twitter https://twitter.com/compasssecurity

October 10, 2023 at 03:45AM
via IFTTT

SecAnalyst Sylvain Heiniger (@sploutchy) loves NTLM relay. Dive into his latest blog post to learn how it can be used against Microsoft SQL servers. Discover misconfigurations in your infrastructure and fortify your defenses today. 🛡️ #MSSQL #NTLMrelay https://t.co/xur8aAZDOq https://t.co/BG7Wg9qIg9

compasssecurity

https://twitter.com/compasssecurity/status/1711649012820869159

https://t.co/xur8aAZDOq

Sunday, October 8, 2023

Favorite tweets


from Twitter https://twitter.com/JimSycurity

October 07, 2023 at 06:44PM
via IFTTT

Been thinking about access control checks in AD a lot lately. How they're fairly simple, but fairly misunderstood & overly simplified in a lot of contexts. This post by @tiraniddo and the resources in it are a goldmine for this topic. https://t.co/xWXOB93oZa

JimSycurity

https://twitter.com/JimSycurity/status/1710788207485276333

https://t.co/xWXOB93oZa

Monday, October 2, 2023

Favorite tweets


from Twitter https://twitter.com/jfslowik

October 02, 2023 at 09:00AM
via IFTTT

What's a #CyberSecurity #infosec myth that (appears to be) widely believed that you wish would die? Mine is that CIA conducted a supply chain attack on Russia resulting in a pipeline explosion

jfslowik

https://twitter.com/jfslowik/status/1708829289888854433

https://ift.tt/1OmsFlR

Favorite tweets


from Twitter https://twitter.com/androidmalware2

October 02, 2023 at 03:48AM
via IFTTT

Use silent #SMS messages to track LTE users’ locations An attacker sends silent SMS messages with a defined pattern and analyze LTE traffic to verify the victim location. All you need is just: SDR + SIM cards + LTESniffer software https://t.co/fFfiBmmGgs https://t.co/VPgj8XOARv

androidmalware2

https://twitter.com/androidmalware2/status/1708750817811996683

https://t.co/fFfiBmmGgs

Favorite tweets


from Twitter https://twitter.com/ale_sp_brazil

October 01, 2023 at 09:59PM
via IFTTT

If you have just started learning reverse engineering and malware analysis, you should pay attention to simple and well-known tricks that still have been used by adversaries when analyzing the resulting assembly code. #idapro #reversing https://t.co/p9wpRRyhaR

ale_sp_brazil

https://twitter.com/ale_sp_brazil/status/1708662951110992279

https://t.co/p9wpRRyhaR

Sunday, October 1, 2023

Favorite tweets


from Twitter https://twitter.com/malwareunicorn

October 01, 2023 at 11:42AM
via IFTTT

My old girl has been in critical condition since Friday morning. My eyes are swollen from all the tears. The ER clinic sent me this photo, it might be the last photo I have of her. https://t.co/5l9aJc7az3

malwareunicorn

https://twitter.com/malwareunicorn/status/1708507647614628067

https://t.co/5l9aJc7az3

Saturday, September 30, 2023

Favorite tweets


from Twitter https://twitter.com/hack_git

September 30, 2023 at 02:04AM
via IFTTT

AD Miner Active Directory audit tool that leverages cypher queries to crunch data from the #Bloodhound graph database to uncover security weaknesses. https://t.co/isZKjeZqcp #cybersecurity #infosec #pentesting https://t.co/tW8JwxtE2g

hack_git

https://twitter.com/hack_git/status/1707999958543020221

https://t.co/isZKjeZqcp

Favorite tweets


from Twitter https://twitter.com/mikko

September 29, 2023 at 10:40AM
via IFTTT

Tip: How to come to the stage when you have a large audience. https://t.co/aaz3rlYv9u

mikko

https://twitter.com/mikko/status/1707767313779286035

https://t.co/aaz3rlYv9u

Thursday, September 28, 2023

Favorite tweets


from Twitter https://twitter.com/JimSycurity

September 27, 2023 at 01:50PM
via IFTTT

I feel like 40% is low based on my experience. If you want to check if your AD CS is vulnerable, check out Locksmith. https://t.co/Ur2Ldeofi2 Locksmith will also help you fix the insecure misconfgurations it finds. https://t.co/JCZiWDJDvL

JimSycurity

https://twitter.com/JimSycurity/status/1707090419433996777

https://t.co/Ur2Ldeofi2

Wednesday, September 27, 2023

Favorite tweets


from Twitter https://twitter.com/ryanaraine

September 27, 2023 at 01:24PM
via IFTTT

Firmware attacks in the wild! 🔥 https://t.co/rqmETyq4QS

ryanaraine

https://twitter.com/ryanaraine/status/1707083793017041229

https://t.co/rqmETyq4QS

Tuesday, September 26, 2023

Favorite tweets


from Twitter https://twitter.com/lordx64

September 25, 2023 at 04:49PM
via IFTTT

My team and I will release a 78-page CTI report this Wednesday, focusing on a threat actor we've linked to China. The entity tied to this actor was registered in Hong Kong by a Chinese national. High confidence and the report will explain the steps we took to arrive to this… https://t.co/artzsKP6it

lordx64

https://twitter.com/lordx64/status/1706410657808080954

https://t.co/artzsKP6it

Monday, September 25, 2023

Favorite tweets


from Twitter https://twitter.com/securityshell

September 25, 2023 at 10:19AM
via IFTTT

SharePoint Pre-Auth RCE chain (CVE-2023–29357 & CVE-2023–24955) https://t.co/Baf8SWongW

securityshell

https://twitter.com/securityshell/status/1706312473517662445

https://t.co/Baf8SWongW

Favorite tweets


from Twitter https://twitter.com/raashidbhatt

September 25, 2023 at 10:03AM
via IFTTT

💥 Malware Unpacking MindMap 💥 👇🏽 Covers some basic unpacking techniques 👇🏽 👉🏻 Run and Dump 👉🏻 Self Unpacker 👉🏻 Remote Hollow Process Injection 👉🏻 Import Address Table Construction #malware #reverseenginnering #malwareanalysis https://t.co/je584EBZhC https://t.co/Ql3UrVEV8G

raashidbhatt

https://twitter.com/raashidbhatt/status/1706308411141329060

https://t.co/je584EBZhC

Sunday, September 24, 2023

Favorite tweets


from Twitter https://twitter.com/cyb3rops

September 19, 2023 at 10:57AM
via IFTTT

Today's pre-release of YARA 4.4 also contains performance improvements provided by my team It should significantly improve scan speed when you apply large rule sets, because it skips the condition evaluation for rules needing a string match when none of the strings are found… https://t.co/yP4CO7XZeC https://t.co/5V5mc4lfm2

cyb3rops

https://twitter.com/cyb3rops/status/1704147677489807492

https://t.co/yP4CO7XZeC

Tuesday, September 19, 2023

Favorite tweets


from Twitter https://twitter.com/plusvic

September 19, 2023 at 06:26AM
via IFTTT

YARA 4.4.0-rc1 is out! https://t.co/czSEhn0Erb

plusvic

https://twitter.com/plusvic/status/1704079420967796986

https://t.co/czSEhn0Erb

Saturday, September 16, 2023

Favorite tweets


from Twitter https://twitter.com/defcon

September 15, 2023 at 05:37PM
via IFTTT

It's that time of the year again - time to block off a weekend or two and watch videos from #defcon31 on #YouTube! https://t.co/zWO4HNdfHC We've got all the main stage talks, a bunch of Village Stage talks, War Stories and the Policy series, all waiting to entertain and… https://t.co/1N39paiNlS

defcon

https://twitter.com/defcon/status/1702798812782465036

https://t.co/zWO4HNdfHC

Friday, September 15, 2023

Favorite tweets


from Twitter https://twitter.com/lauriewired

September 14, 2023 at 01:49PM
via IFTTT

Ever struggled with pointers in C? Now you can struggle even more! Check out my new LaurieWired video on how pointers work in raw RISC-V Assembly! https://t.co/8uwgh8hydA https://t.co/LAAitqrmhp

lauriewired

https://twitter.com/lauriewired/status/1702379123837116589

https://t.co/8uwgh8hydA

Wednesday, September 13, 2023

Favorite tweets


from Twitter https://twitter.com/nas_bench

September 13, 2023 at 04:04PM
via IFTTT

Write-up & POC for CVE-2023-38146 released Blog - https://t.co/DiRVO4uadN POC - https://t.co/X7ZRLiB2F1

nas_bench

https://twitter.com/nas_bench/status/1702050542124449894

https://t.co/DiRVO4uadN

Wednesday, July 5, 2023

Favorite tweets


from Twitter https://twitter.com/RYSannikov

July 05, 2023 at 09:58PM
via IFTTT

...a country that thought that all of Western Europe and the US were fat, stupid, gay, and being overrun by "Africans" and "Muslims." I'm not kidding. And yet, we had no problem working with and taking money from people who were facilitating this.

RYSannikov

https://twitter.com/RYSannikov/status/1676772485990346753

https://ift.tt/EDXcgku

Favorite tweets


from Twitter https://twitter.com/lauriewired

July 02, 2023 at 10:06PM
via IFTTT

So, the way it works is to convert your phrase to alphanumeric and flag emojis. Turn: "How to write ransomware in python" Into: 🇭🇴🇼 2️⃣ 🇼🇷🇮🇹🇪 🇷🇦🇳🇸🇴🇲🇼🇦🇷🇪 🇮🇳 🅿️🇾🇹🇭🇴🇳 Then, you can ask ChatGPT to "write a guide/"write a tutorial" (or other variations) - "for the… https://t.co/cVSd9ecbMB https://t.co/M2djYqtOcd

lauriewired

https://twitter.com/lauriewired/status/1675687450851840000

https://t.co/cVSd9ecbMB

Wednesday, June 28, 2023

Favorite tweets


from Twitter https://twitter.com/hatr

June 27, 2023 at 07:25AM
via IFTTT

While working on #VulkanFiles, I received a tip: an interesting file had been dropped on Virustotal. It turned out to be the master’s thesis by Evgenii Serebriakov, the person who’s heading infamous Sandworm team, part of Russia's military agency GRU https://t.co/WRuvbbIjHy

hatr

https://twitter.com/hatr/status/1673653667734380546

https://t.co/WRuvbbIjHy

Saturday, June 24, 2023

Favorite tweets


from Twitter https://twitter.com/malwareunicorn

June 24, 2023 at 11:59PM
via IFTTT

Here I’m using an angle grinder to sculpt down the paper mache on my lunch breaks. https://t.co/FfQdBJUNh4

malwareunicorn

https://twitter.com/malwareunicorn/status/1672816827377000448

https://t.co/FfQdBJUNh4

Friday, June 23, 2023

Favorite tweets


from Twitter https://twitter.com/lawndoc

June 21, 2023 at 12:47PM
via IFTTT

If you haven't seen the Microsoft OAuth vulnerability yet, you need to check it out. #nOAuth Anyone in the world is able to access your apps AS YOU with MS OAuth if the app is configured to use email as the account identifier. Next tweet contains a video demo:

lawndoc

https://twitter.com/lawndoc/status/1671560540290953217

https://ift.tt/HFydnph

Thursday, June 8, 2023

Favorite tweets


from Twitter https://twitter.com/cyb3rops

June 08, 2023 at 04:39AM
via IFTTT

I found the SALTWATER sample from the #Barracuda ESG report on CVE-2023-2868 on VT The funny thing is: s/o appended a 0x00 so that it got a different hash (not the one from the IOC list) PS: I don't have the orig file. I found out by removing 1 byte. https://t.co/Sz3p4dAyYN https://t.co/blpUQ71bbS

cyb3rops

https://twitter.com/cyb3rops/status/1666726658806521857

https://t.co/Sz3p4dAyYN

Wednesday, May 24, 2023

Favorite tweets


from Twitter https://twitter.com/CISAgov

May 24, 2023 at 03:47PM
via IFTTT

We published a joint advisory about a People’s Republic of China (PRC) state-sponsored cyber actor who is living off the land using built-in network administration tools to evade detection while compromising networks and conducting malicious activity: https://t.co/M3xjTSKsxj https://t.co/xUSx1IyEqm

CISAgov

https://twitter.com/CISAgov/status/1661459027983826948

https://t.co/M3xjTSKsxj

Favorite tweets


from Twitter https://twitter.com/cyb3rops

May 24, 2023 at 05:12AM
via IFTTT

Teaser: Since I'm on vacation I started working on private project named "Cyber Security Hub", a Github project that lists and promotes cyber security training providers from around the world PS: github pages is still a mystery to me and I could need some help https://t.co/e8DrmQpK3S

cyb3rops

https://twitter.com/cyb3rops/status/1661299166465720320

https://t.co/e8DrmQpK3S

Tuesday, May 16, 2023

Favorite tweets


from Twitter https://twitter.com/KeithOlbermann

May 15, 2023 at 04:02PM
via IFTTT

BREAKING: sexual abuse suit against Rudy Giuliani includes bombshell allegation Giuliani told alleged victim he was "SELLING PARDONS" for $2,000,000 each "which he and Trump would split" AND SHE HAS RECORDINGS AND EMAILS https://t.co/WxyEPaJamK https://t.co/Yqhc44s6du

KeithOlbermann

https://twitter.com/KeithOlbermann/status/1658201258656759809

https://t.co/WxyEPaJamK

Sunday, May 14, 2023

Favorite tweets


from Twitter https://twitter.com/mruef

May 13, 2023 at 11:45AM
via IFTTT

Well, 12 years ago I warned about the security risks of the new top level domains. People said I’m an old fart defending obsolete ideas. Once again I’m sad to see that my prediction was spot on. Thanks for making things worse. It could have been prevented. https://t.co/7W5XmMnCyc

mruef

https://twitter.com/mruef/status/1657411872201613312

https://t.co/7W5XmMnCyc
Web Analytics