#ldapfirewall resultados de búsqueda
Shared a (partial) list of suggested tools to run in the @DEATHCon2024 lab to see #LDAPFirewall & #RPCFirewall in action. Anything else I need to add ? :)
One week till @NorthSec_io @dekel_paz and I are doing a workshop on how to stop (a lot!) of #ActiveDirectory attacks via #LDAPFirewall and #RPCFirewall. Make sure to BYOAD (Bring Your Own Active Directory) so you can follow along yourself. bit.ly/4adbgjL
In this @DEATHCon2024 , @dekel_paz and @SagieDulce will show how #RPCFirewall & #LDAPFirewall capture potentially malicious activities on the DCs. If you configure our tools right, you're a simple Sentinel query away from detecting (and the next step is stopping) attacks!
Thank you @NorthSec_io, @obilodeau and @hugospns for hosting our workshop. Thanks for all who attended and continue using and contributing to our #OSS tools: #RPCFirewall & #LDAPFirewall. And of course, thanks to our speakers @dekel_paz and @SagieDulce
Nice work by @YaronZi & @CrowdStrike promoting LDAP Security to detect suspicious LDAP activities. crowdstrike.com/en-us/blog/ins… Maybe someone wants to slap an AI agent on their #LDAPFirewall for similar results? :) github.com/zeronetworks/l…
Don't miss Zero Networks' Sagie Dulce & Dekel Paz at #DEATHCon2023 💪! Check out their session on November 4 📅: "Detection Engineering with #RPCFirewall and #LDAPFirewall," and better detect and prevent #lateralmovement and #ransomware attacks. 🔐ow.ly/R3ch50OwSLz
The countdown to DEATH begins! Join @SagieDulce and @dekel_paz in their hands on workshop on DC protection with the #RPCFirewall and #LDAPFirewall. @DEATHCon2024 is a hugely important conference by @rpargman, @OlafHartong, @th3cyF0x: thanks you. hubs.li/Q02B2ZX60
😎 Our security research team – dubbed @ZeroNLabs – is a group passionate, creative, and bright people. One of their creations, #LDAPFirewall, was on full display at the #BHUSA Arsenal stage. 🛡️🎉 Watch an on-demand demo of the #LDAP Firewall here → zeronetworks.com/blog/ldap-fire…
We’re very happy to have #RPCFirewall back again - it delivered some really cool and unique telemetry on attacks last year! Excited to see what #LDAPFirewall will uncover this time around!
The @ZeroNetworks Labs team is happy to join the @DEATHCon2023 lab! Excited to demo our open source #RPCFirewall & #LDAPFirewall Thanks the DEATHCON team for the hard work @th3cyF0x @rpargman @olafhartong
Exciting news! @SagieDulce and @dekel_paz will be delivering a workshop at @NorthSec_io on how to stop #ActiveDirecory attacks before they do any damage using the #LDAPFirewall and #RPCFirewall. Roll up your sleeves and come check them out! hubs.li/Q02vw0gj0
This one checks a lot of #LateralMovement TTPs. Could have been nicely blocked by #LDAPFirewall & #RPCFirewall + some #NetworkSegmentation How #blackSuit #ransomware spread from first fake #zoom installer -> d3f@ckloader #IDAT #SectopRAT thedfirreport.com/2025/03/31/fak…
🌟New report out today!🌟 Fake Zoom Ends in BlackSuit Ransomware Analysis and reporting completed by @pigerlin, UC1 and @Miixxedup Audio: Available on Spotify, Apple, YouTube and more! thedfirreport.com/2025/03/31/fak…
@TrustedSec's excellent writeup by @4ndr3w6S & Megan Nilsen on DACL detections - gave us an appetite for DACL 𝐩𝐫𝐞𝐯𝐞𝐧𝐭𝐢𝐨𝐧𝐬. @dekel_paz explains the way to prevent DACL based #LDAP attacks via the #LDAPFirewall🔥 hubs.li/Q02Bvs7Y0 #Red_Team_Tactics
@DEATHCon2024 weekend is done, with a ton professional, hands-on workshops. Even if you don't have access to the conference, we wanted to make the workshop available for any #ThreatHunter who wants to try out our #LDAPFirewall & #RPCFirewall youtu.be/hJyIpma6CYo
youtube.com
YouTube
DEATHcon 2024: Prevention Engineering via the RPC and LDAP Firewalls
Only a partial list of tools you can block with #LDAPFirewall and #RPCFirewall :)
Shared a (partial) list of suggested tools to run in the @DEATHCon2024 lab to see #LDAPFirewall & #RPCFirewall in action. Anything else I need to add ? :)
Timing is everything. It's impressive that you were able to remediate quickly. We've developed several OSS to help prevent #lateralmovement such as #RPCFirewall and #LDAPFirewall so an attack can be detected while prevented github.com/zeronetworks
Everything is ready to go for @DEATHCon2024! Join @dekel_paz and @SagieDulce for their workshop: 𝙋𝙧𝙚𝙫𝙚𝙣𝙩𝙞𝙤𝙣 𝙀𝙣𝙜𝙞𝙣𝙚𝙚𝙧𝙞𝙣𝙜 via #LDAPFirewall and #RPCFirewall. See how to start stopping - instead of just responding (too late) to attacks. deathcon.io
Wrote a post on how to stop LDAP recon attacks via the #LDAPFirewall. Special thanks to @olafhartong for providing some important insights and reviewing :) zeronetworks.com/blog/leash-the…
🛑 @SagieDulce, VP Research, breaks down how to stop #LDAP recon attacks from #SharpHound, #SOAPHound, #PowerView, #Adalanche and others, via the #LDAPFirewall. 💡Useful scripts and configuration templates also included Read here → hubs.li/Q02vqNgk0
Here's a useful PowerShell script to collect #LDAPFirewall events into CSV. Makes researching LDAP attacks or creating baseline configurations for LDAP much simpler. hubs.li/Q02s65jr0
Me and @dekel_paz workshop is now public. Check it out. All about setting up #LDAPFirewall & #RPCFirewall in #PreventionEngineering mode. @DEATHCon2024
@DEATHCon2024 weekend is done, with a ton professional, hands-on workshops. Even if you don't have access to the conference, we wanted to make the workshop available for any #ThreatHunter who wants to try out our #LDAPFirewall & #RPCFirewall youtu.be/hJyIpma6CYo
youtube.com
YouTube
DEATHcon 2024: Prevention Engineering via the RPC and LDAP Firewalls
Gets some hands-on practice with the #RPCFirewall and #LDAPFirewall in protecting #DomainControllers in the upcoming @DEATHCon2024 !
The countdown to DEATH begins! Join @SagieDulce and @dekel_paz in their hands on workshop on DC protection with the #RPCFirewall and #LDAPFirewall. @DEATHCon2024 is a hugely important conference by @rpargman, @OlafHartong, @th3cyF0x: thanks you. hubs.li/Q02B2ZX60
This one checks a lot of #LateralMovement TTPs. Could have been nicely blocked by #LDAPFirewall & #RPCFirewall + some #NetworkSegmentation How #blackSuit #ransomware spread from first fake #zoom installer -> d3f@ckloader #IDAT #SectopRAT thedfirreport.com/2025/03/31/fak…
🌟New report out today!🌟 Fake Zoom Ends in BlackSuit Ransomware Analysis and reporting completed by @pigerlin, UC1 and @Miixxedup Audio: Available on Spotify, Apple, YouTube and more! thedfirreport.com/2025/03/31/fak…
thedfirreport.com
Fake Zoom Ends in BlackSuit Ransomware
Key Takeaways The threat actor gained initial access by a fake Zoom installer that used d3f@ckloader and IDAT loader to drop SectopRAT. After nine days of dwell time, the SectopRAT malware dropped …
Nice work by @YaronZi & @CrowdStrike promoting LDAP Security to detect suspicious LDAP activities. crowdstrike.com/en-us/blog/ins… Maybe someone wants to slap an AI agent on their #LDAPFirewall for similar results? :) github.com/zeronetworks/l…
We're not sure ChatGPT is best for finding bugs, but you're welcome to raise issues @egosumdns. Even if #LDAPFirewall fails (running now in several production envs with 0 crashes), it will be in the same 𝗰𝗿𝗼𝘄𝗱 with Billion dollar companies who can't say the same #YOLO
While there's no POC yet, it does seem that either #RPCFirewall or #LDAPFirewall (or both) would serve as a mitigation. We always encourage putting both of our tool in #PreventionEngineering mode to block all unknown / unexpected operations. github.com/zeronetworks/
github.com
Zero Networks
MFA-based Microsegmentation and Advanced ZTNA. Zero Networks has 18 repositories available. Follow their code on GitHub.
#ShadowHound by @yudasm_ evades EDRs by operating as a PS module & using a stealthy LDAP search query. 🚨Block it with our free #LDAPFirewall tool! github.com/Friends-Securi…
Me and @dekel_paz workshop is now public. Check it out. All about setting up #LDAPFirewall & #RPCFirewall in #PreventionEngineering mode. @DEATHCon2024
@DEATHCon2024 weekend is done, with a ton professional, hands-on workshops. Even if you don't have access to the conference, we wanted to make the workshop available for any #ThreatHunter who wants to try out our #LDAPFirewall & #RPCFirewall youtu.be/hJyIpma6CYo
youtube.com
YouTube
DEATHcon 2024: Prevention Engineering via the RPC and LDAP Firewalls
@DEATHCon2024 weekend is done, with a ton professional, hands-on workshops. Even if you don't have access to the conference, we wanted to make the workshop available for any #ThreatHunter who wants to try out our #LDAPFirewall & #RPCFirewall youtu.be/hJyIpma6CYo
youtube.com
YouTube
DEATHcon 2024: Prevention Engineering via the RPC and LDAP Firewalls
Only a partial list of tools you can block with #LDAPFirewall and #RPCFirewall :)
Shared a (partial) list of suggested tools to run in the @DEATHCon2024 lab to see #LDAPFirewall & #RPCFirewall in action. Anything else I need to add ? :)
Shared a (partial) list of suggested tools to run in the @DEATHCon2024 lab to see #LDAPFirewall & #RPCFirewall in action. Anything else I need to add ? :)
In this @DEATHCon2024 , @dekel_paz and @SagieDulce will show how #RPCFirewall & #LDAPFirewall capture potentially malicious activities on the DCs. If you configure our tools right, you're a simple Sentinel query away from detecting (and the next step is stopping) attacks!
Great play @rpargman :). I've always enjoyed @TheDFIRReport analysis. I also think it would be really interesting to add #RPCFirewall & #LDAPFirewall to their telemetry. Hope they jump on the idea 🤠
We're going to have two fun and challenging CTFs at DEATHcon this year: @TheDFIRReport is hosting one of their signature hunting competitions, and @tracebit_com has a cool challenge trying to avoid tripping detection canaries while achieving red team objectives in cloud assets 🔥
Everything is ready to go for @DEATHCon2024! Join @dekel_paz and @SagieDulce for their workshop: 𝙋𝙧𝙚𝙫𝙚𝙣𝙩𝙞𝙤𝙣 𝙀𝙣𝙜𝙞𝙣𝙚𝙚𝙧𝙞𝙣𝙜 via #LDAPFirewall and #RPCFirewall. See how to start stopping - instead of just responding (too late) to attacks. deathcon.io
3. #LDAPFirewall used to block modification of directory properties related to certificates vimeo.com/1006978242/370…
😎 Our security research team – dubbed @ZeroNLabs – is a group passionate, creative, and bright people. One of their creations, #LDAPFirewall, was on full display at the #BHUSA Arsenal stage. 🛡️🎉 Watch an on-demand demo of the #LDAP Firewall here → zeronetworks.com/blog/ldap-fire…
Today at 12:30 at @BlackHatEvents, @dekel_paz & @sagiedulce will be presenting the #LDAPFirewall, showing how you can actually audit LDAP efficiently in production, and also block a ton of LDAP attacks! blackhat.com/us-24/arsenal/… #BlackHatUSA2024
Even though #LDAP is 31 years old, it's still relevant. Case in point, an awesome talk by @danielhbohannon and @sabi_elezi, showcasing how to break your #LDAP search detection with advanced obfuscation techniques. Also #MaLDAPtive tool drop! github.com/MaLDAPtive/Inv…
Using the #RPCFirewall Firewall-Only configuration template blocks the command: 'net group “ESX Admins” /domain /add', which does RPC call for SAMR CreateGroupInDomain. #LDAPFirewall protects against similar attempts by blocking Add / Modify operations. bit.ly/4fro75G
learn.microsoft.com
[MS-SAMR]: SamrCreateGroupInDomain (Opnum 10)
The SamrCreateGroupInDomain method creates a group object within a domain. long SamrCreateGroupInDomain( [in]
Just one week until @BlackHatEvents! Come meet the @ZeroNLabs team at the #LDAPFirewall arsenal presentation by @dekel_paz and @SagieDulce! hubs.li/Q02JcBFR0
Come meet @dekel_paz and @SagieDulce at @BlackHatEvents USA Arsenal, where they will be showcasing how the #LDAPFirewall stops numerous LDAP attacks! hubs.li/Q02FlrSm0
@TrustedSec's excellent writeup by @4ndr3w6S & Megan Nilsen on DACL detections - gave us an appetite for DACL 𝐩𝐫𝐞𝐯𝐞𝐧𝐭𝐢𝐨𝐧𝐬. @dekel_paz explains the way to prevent DACL based #LDAP attacks via the #LDAPFirewall🔥 hubs.li/Q02Bvs7Y0 #Red_Team_Tactics
Gets some hands-on practice with the #RPCFirewall and #LDAPFirewall in protecting #DomainControllers in the upcoming @DEATHCon2024 !
The countdown to DEATH begins! Join @SagieDulce and @dekel_paz in their hands on workshop on DC protection with the #RPCFirewall and #LDAPFirewall. @DEATHCon2024 is a hugely important conference by @rpargman, @OlafHartong, @th3cyF0x: thanks you. hubs.li/Q02B2ZX60
😎 Our security research team – dubbed @ZeroNLabs – is a group passionate, creative, and bright people. One of their creations, #LDAPFirewall, was on full display at the #BHUSA Arsenal stage. 🛡️🎉 Watch an on-demand demo of the #LDAP Firewall here → zeronetworks.com/blog/ldap-fire…
Don't miss Zero Networks' Sagie Dulce & Dekel Paz at #DEATHCon2023 💪! Check out their session on November 4 📅: "Detection Engineering with #RPCFirewall and #LDAPFirewall," and better detect and prevent #lateralmovement and #ransomware attacks. 🔐ow.ly/R3ch50OwSLz
The @ZeroNetworks Labs team is happy to join the @DEATHCon2023 lab! Excited to demo our open source #RPCFirewall & #LDAPFirewall Thanks the DEATHCON team for the hard work @th3cyF0x @rpargman @olafhartong
One week till @NorthSec_io @dekel_paz and I are doing a workshop on how to stop (a lot!) of #ActiveDirectory attacks via #LDAPFirewall and #RPCFirewall. Make sure to BYOAD (Bring Your Own Active Directory) so you can follow along yourself. bit.ly/4adbgjL
Shared a (partial) list of suggested tools to run in the @DEATHCon2024 lab to see #LDAPFirewall & #RPCFirewall in action. Anything else I need to add ? :)
The countdown to DEATH begins! Join @SagieDulce and @dekel_paz in their hands on workshop on DC protection with the #RPCFirewall and #LDAPFirewall. @DEATHCon2024 is a hugely important conference by @rpargman, @OlafHartong, @th3cyF0x: thanks you. hubs.li/Q02B2ZX60
In this @DEATHCon2024 , @dekel_paz and @SagieDulce will show how #RPCFirewall & #LDAPFirewall capture potentially malicious activities on the DCs. If you configure our tools right, you're a simple Sentinel query away from detecting (and the next step is stopping) attacks!
Thank you @NorthSec_io, @obilodeau and @hugospns for hosting our workshop. Thanks for all who attended and continue using and contributing to our #OSS tools: #RPCFirewall & #LDAPFirewall. And of course, thanks to our speakers @dekel_paz and @SagieDulce
Exciting news! @SagieDulce and @dekel_paz will be delivering a workshop at @NorthSec_io on how to stop #ActiveDirecory attacks before they do any damage using the #LDAPFirewall and #RPCFirewall. Roll up your sleeves and come check them out! hubs.li/Q02vw0gj0
This one checks a lot of #LateralMovement TTPs. Could have been nicely blocked by #LDAPFirewall & #RPCFirewall + some #NetworkSegmentation How #blackSuit #ransomware spread from first fake #zoom installer -> d3f@ckloader #IDAT #SectopRAT thedfirreport.com/2025/03/31/fak…
🌟New report out today!🌟 Fake Zoom Ends in BlackSuit Ransomware Analysis and reporting completed by @pigerlin, UC1 and @Miixxedup Audio: Available on Spotify, Apple, YouTube and more! thedfirreport.com/2025/03/31/fak…
Something went wrong.
Something went wrong.
United States Trends
- 1. Spotify 1.06M posts
- 2. Chris Paul 27.6K posts
- 3. Hartline 9,877 posts
- 4. Clippers 40.1K posts
- 5. Henry Cuellar 4,955 posts
- 6. #HappyBirthdayJin 99.1K posts
- 7. ethan hawke 3,852 posts
- 8. GreetEat Corp 1,130 posts
- 9. David Corenswet 6,578 posts
- 10. Jonathan Bailey 7,908 posts
- 11. South Florida 6,134 posts
- 12. Apple Music 266K posts
- 13. #NSD26 24.6K posts
- 14. Chris Henry 2,070 posts
- 15. $MSFT 15.1K posts
- 16. Klein 16.6K posts
- 17. #JINDAY 79K posts
- 18. #OurSuperMoonJin 79.4K posts
- 19. Nashville 34.2K posts
- 20. #WorldwideHandsomeJin 77.2K posts