Bashar
@1337bash
I hunt for a living. I like breadcrumbs. Views expressed are my own.
You might like
My talk @BSidesSATX about building a NextGen Home Lab is out on YouTube. Go watch it now! Thanks again to @BSidesSATX for having me and for all your efforts to provide these recordings to the community. Most of this year's talks are on their channel. youtube.com/watch?v=ex0esb…
youtube.com
YouTube
From Kali and a Couple of VMs to NextGen Home Lab - An Approach to...
Free Offensive Security Notes (OSCP, OSWE, OSEP, OSED) OSCP NOTES AD: drive.google.com/file/d/14jirVK… OSCP Notes : drive.google.com/file/d/1eYUaea… OSWE Notes: drive.google.com/file/d/1KIc_qs… OSEP Notes: drive.google.com/file/d/1L9mfwf… OSED Notes: drive.google.com/file/d/1_mPHr3… #oscp #osed #oswe #osep #osce³…
Business email compromise doesn't get the same coverage as other cyber attacks, but it's still ubiquitous. If you use Sentinel or M365 Defender this article from @PeteABryan is an absolute must read. Great queries, guidance and threat intelligence for BEC- techcommunity.microsoft.com/t5/microsoft-s…
More than half of the breaches investigated by @StrozDFIR in 2022 included phishing as an initial access technique. Learn more about evolving #phishing techniques in our latest blog where we talk about brand impersonation, consent phishing, and the usage of phishing kits.…
New blog post! I love when adversaries use VHD files to distribute malware because VHDs can potentially contain a lot more data than the adversary intends to distribute. To see what I mean, check out this post: forensicitguy.github.io/vhd-malware-an… #malware #vhd
Nice series here >> Hunting for Persistence in Linux (Part 1): Auditd, Sysmon, Osquery (and Webshells) pberba.github.io/security/2021/… (and good summary map in pberba.github.io/assets/posts/c…)
Citrix Gateway VPN compromised via CVE-2023-3519 (a critical unauthenticated RCE) shows evidence of exploitation on 7th July, 11 days before the official patch. The attackers exfiltrated the system configuration file to then probably use the Metasploit module called…
Citrix NetScaler ADC CVE-2023-3519 resources -- Compromise Assessments @CISAgov advisory cisa.gov/sites/default/… Deyda guide deyda.net/index.php/en/2… -- Vuln Checks Python github.com/telekom-securi… Nmap NSE script github.com/RootUp/Persona… I'm gonna add more links in this🧵
Yesterday, I presented @jsecurity101 and my Malware Morphology workshop at @NorthSec_io. Thanks to the organizers and everyone who attended. If you missed it, you’re in luck the recording is available! 📼 Video: youtube.com/live/KTAeUjDBW… 🗒️ GitHub: github.com/jaredcatkinson…
Today, me and @ateixei are releasing the EDR Telemetry project. This project aims to compare and evaluate the telemetry of various EDR products. ✅Introductory blog post: t.ly/9Ia3 ✅GitHub Repo: github.com/tsale/EDR-Tele… ✅Comparison Table: t.ly/HMht
PSA: Major new Timesketch release - the open source #DFIR timeline analysis platform. We have been working on redesigning and improving the user experience. 🧵Thread with screenshots:
Some really great sites you should bookmark loldrivers.io (just released) gtfobins.github.io lolbas-project.github.io lots-project.com filesec.io malapi.io
Hey defense & blue team people ICYMI Kali released Kali Purple which is essentially SOC in a box with cool tools like TheHive, Suricata, Arkime, Elastic SIEM & Malcolm all bundled together & makes a great starting tool for getting defenses up gitlab.com/kalilinux/kali…
Hey #DFIR community... if you want to play with some basic Anti-Forensic stuff related to the NTFS file system, please check the challenge me & @maryst33d created. I don't want to spoil it, but there is probably something in it that not many know about! ashemery.com/dfir.html#Chal…
schtasks /create /tn "Task Name" /tr "C:\path\to\program.exe" /sc onstart /ru SYSTEM
❗Exciting news!❗ We've published nearly all the #BlueHat 2023 videos on the Microsoft Security Response Center (MSRC) YouTube channel. Happy viewing! 📺 msft.it/60195lV6Z
"Parsing Multiple Registry Hives using VSC Toolset and RegRipper" #DFIR Probably one of those underrated tools that I really think you should check!... Hopefully this video will convince you to start using it in your investigations. Thanks @jasonshale youtube.com/watch?v=LokqW4…
youtube.com
YouTube
Parsing Multiple Registry Hives using VSCToolset and RegRipper
The following 5 workshops simulate multiple security events. Brought to you by the AWS Customer Incident Response Team (CIRT) 👇
Great new tool by @bananabr to find folders excluded from antivirus scanning by comparing file write times across tested folders. Writes to excluded folders finish much faster as they don't have their writes intercepted by AV. Clever! github.com/bananabr/TimeE…
here are the slides from the talk @eric_capuano and i gave at @cactuscon on "Security Operations with Velociraptor": reconis.co/secops_with_vr you can watch the stream here: reconis.co/secops_with_vr… #CC11 #CactusCon #DFIR #infosec #secops #velociraptor @velocidex @Recon_InfoSec
United States Trends
- 1. Good Sunday N/A
- 2. Muhammad Qasim N/A
- 3. Jesus is the Son of God N/A
- 4. #tiktokdown N/A
- 5. Alex Pretti N/A
- 6. #UFC324 N/A
- 7. Paddy N/A
- 8. #sundaymotivation N/A
- 9. #SundayFunday N/A
- 10. Kyle Rittenhouse N/A
- 11. #LingOrmHKFanmeetD2 N/A
- 12. LINGORM HONGKONG MEET N/A
- 13. Laken Riley N/A
- 14. PERTHSANTA BABYMATTE CUSHION N/A
- 15. Learner Tien N/A
- 16. Noem N/A
- 17. Gaethje N/A
- 18. Beerus N/A
- 19. Championship Sunday N/A
- 20. Moro N/A
You might like
-
Ryan "Chaps" Chapman
@rj_chap -
Hackmanac
@H4ckmanac -
scsideath
@cybersyrupblog -
Mr.Un1k0d3r
@MrUn1k0d3r -
Cliff Vazquez
@cliffvazquez -
The Diana Initiative
@DianaInitiative -
@guidepointsec
@GuidePointSec -
Ring3API 🇺🇦
@ntlmrelay -
The National Security Institute
@MasonNatSec -
Victor M. Alvarez
@plusvic -
VU
@vusecurity -
Positive Technologies Global
@PTsecurity_EN -
Cyber Threat Hub
@CyberThreatHub -
Cntra
@cntramndum -
burnmanp
@burnmanp
Something went wrong.
Something went wrong.