Ash
@_bin_Ash
Computer enjoyer // cert haver // бегство от действительности)) (@Mandiant+@GoogleCloud)
You might like
They don’t teach you this in school but you can just have a delusional sense of optimism towards the world and believe everything is going to work out and you’ll succeed in every facet of life.
The Agentic SOC is here. 🛡️Introducing the Alert Triage and Investigation Agent in Google SecOps (Public Preview). It autonomously investigates alerts, runs YARA-L queries, and applies @Mandiant expertise to deliver clear verdicts. See how it works: bit.ly/4i1jj8Q
This is the disruption the C2 market has needed
Chad C2 (@SpacialSec) is the brainrot C2 framework Beacons take 1-5 minutes between callbacks - too long to ignore, to short to start something new Chad C2 integrates your brainrot (X, TikTok, Stake, etc) into your operational workflows. Less doom-scrolling. More pwning.
AI litmus test is if it becomes more important to the world than Microsoft Excel. Excel goes away? Entire financial system collapses AI goes away? You have to use your brain to do stuff
It's crazy how much of being a good "pentester" has nothing to do with technical skills and everything to do with: - Managing your own time - Communicating clearly - Writing well - Tracking and completing things effectively - Staying on top of misc tasks
It's really cool to see how Ghostwriter has grown over the years. Awesome release @cmaddalena!
Real-time collaboration has landed in Ghostwriter v6.0! 👻 Multiple users can now edit observations, findings, & report fields simultaneously w/o the chaos of overwriting each other's work. @cmaddalena dives into the details in his latest blog update. ghst.ly/3TTSrwc
Forced myself to do this over the last 2+ years and I: - can confirm it's painful at first - found it results in more thorough testing. You have to fully document the paths you go down - think it leads to a better work life balance also have to constantly force yourself to do it
The one tip I will give to anyone starting out in any pentest / red team role is the one thing after 20 years of it I still never manage to do properly…. Report as you go ✅✅✅ That way you don’t end up spending your Sundays writing reports. Writing a report on a 3.5 month…
The one tip I will give to anyone starting out in any pentest / red team role is the one thing after 20 years of it I still never manage to do properly…. Report as you go ✅✅✅ That way you don’t end up spending your Sundays writing reports. Writing a report on a 3.5 month…
I haven't posted in a long time but wanted to support my region and help announce the very first Mandiant community night! Enjoy presentations from the Mandiant team and network with like minded people over food and drinks! Great opportunity! linkedin.com/posts/activity…
Fun fact: I will have an entry-level pentester opening on my team posted within the week. Come join the Mandiant Red Team! I'll post the link once it's public.
All the newbies in cybersecurity want to be pen testers. Boy do I have news for y’all
Today we unveil BadSuccessor - a new no-fix Active Directory privilege escalation technique. We will explore the recently introduced dMSA feature, and show how it enables turning a very common, seemingly benign permission, into a full domain take over. akamai.com/blog/security-…
thank god for CDNs TLD that thousands of applications rely on for traffic? nice You can make custom subdomains for the TLD? NICE Block listing the TLD breaks stuff? NICE!
When Kerberoasting, don't just check Kerberoastable users' membership of traditional admin groups (DA, EA, Administrator, etc.) Use the following Cypher query to enumerate _custom_ security groups with administrative permissions over computer objects in a domain:
👀👀👀 Relaying to ADCS web enrollment just got much more interesting github.com/fortra/impacke…
very useful for my fellow Impacket enjoyers
I have put together a list of publicly known IOC for impacket. Thanks to @Octoberfest73 and others on the awesome research. n7wera.notion.site/Modifing-Impac…
United States Trends
- 1. FINALLY DID IT 832 B posts
- 2. The PENGU 242 B posts
- 3. The Jupiter 217 B posts
- 4. The BONK 144 B posts
- 5. Thor 43,1 B posts
- 6. #LingOrmHNYatICONSIAM 1 Mn posts
- 7. Fred Taylor N/A
- 8. Brees 1.485 posts
- 9. Witten N/A
- 10. Kuechly N/A
- 11. #tuesdayvibe 2.528 posts
- 12. Vinatieri N/A
- 13. Fitzgerald 2.322 posts
- 14. Good Tuesday 39,2 B posts
- 15. #FanDuelReplay 2.551 posts
- 16. Gore 9.780 posts
- 17. Chip Kelly 1.401 posts
- 18. Chao Phraya 13,6 B posts
- 19. Happy New Year 159 B posts
- 20. The 4D 35,8 B posts
You might like
-
Octoberfest7
@Octoberfest73 -
Ido Veltzman
@Idov31 -
drm
@lowercase_drm -
LuemmelSec
@theluemmel -
Nick Powers
@zyn3rgy -
eversinc33 🤍🔪⋆。˚ ⋆
@eversinc33 -
Filip Dragovic
@filip_dragovic -
Alice Climent
@AliceCliment -
Josh
@passthehashbrwn -
Cas van Cooten
@chvancooten -
Zero-Point Security
@_ZeroPointSec -
Rémi GASCOU (Podalirius)
@podalirius_ -
Outflank
@OutflankNL -
klez
@KlezVirus -
d1rkmtr
@d1rkmtr
Something went wrong.
Something went wrong.