NateO @NateOSec
Security things Joined April 2014-
Tweets490
-
Followers249
-
Following2K
-
Likes1K
New article: "The real reason why malware detection is hard—and underestimated" If you think an AI with a 98% malware detection rate and 1% false positive rate is splendid, this might change your mind. #GDATATechblog @GDATA gdatasoftware.com/blog/2022/06/3…
We have developed and launched The Mandiant Cyber Threat Intelligence Analyst Core Competencies Framework to help grow the pool of highly capable CTI practitioners. Read this blog post by @_John_Doyle to learn more. 👇 mndt.info/3sQVU1g
New week, new #infosec list 🙌 #DFIR #ThreatIntelligence #malware security-soup.net/weekly-news-ro…
Researchers detail a malicious campaign that used Windows event logs to store malware, a technique that has not been previously documented publicly in attacks (@Ionut_Ilascu / BleepingComputer) bleepingcomputer.com/news/security/… techmeme.com/220509/p30#a22…
21 videos from #Botconf2022 have been released youtube.com/playlist?list=…
Watch out for #BumbleBee! 🐝 Here is everything you need to know about this new malware loader ⬇️ 🧵
An excellent step by step reverse engineering analysis of #BumbleBee from @elisalem9 elis531989.medium.com/the-chronicles…
This was on a LinkedIn post, the person found it on the internet so no idea who did it. The cloud services offered and their equivalents from the other venders.
Our experts have gathered sufficient evidence to assess that the activity tracked as #UNC2452, the group name used to track the #SolarWinds compromise in December 2020, is attributable to #APT29. Learn more: mndt.info/3y19HWz
#DFIR and #ThreatIntel report ❗️ #Bumblebee new loader campaign Initial Access, TTPs & IOCs, and binary analysis ZIP > ISO > LNK > Rundll32 > #CobaltStrike cynet.com/orion-threat-a…
New Black Basta ransomware springs into action with a dozen breaches - @LawrenceAbrams bleepingcomputer.com/news/security/…
NEW: @SecMayorkas announces new members of the Homeland Security Advisory Council Read more about the new members of the #HSAC ⬇️ dhs.gov/news/2022/03/1…
ISC diary: @malware_traffic reviews change in SMTP data exfiltation by #AgentTesla malware i5c.us/d28190
CVE-2018-8373 exploit (Internet Explorer Memory Corruption Vulnerability) app.any.run/tasks/d7ae8ea4…
New Blog Article: Interpreting Antivirus Detection Names. #MalwareAnalysisForHedgehogs 🦔 Thanks to @k_sec and @fwosar for additional information that I added to this article. @hexwaxwing You wanted this. 🙂 struppigel.blogspot.de/2018/01/interp…
#cve-2018-0802 samples from today. Monday should be fun!! 90d66acebfef204bbc908ce877f6d97e97e4cc4e d1d69f9bd8b9df58628987be6935d6c9cf123112 1828d20efe81bea7b99b7e1a29921fbb47ebfc18 90d66acebfef204bbc908ce877f6d97e97e4cc4e 97ae2230b637f61ba2c8868e2d818526248e8eed
Some arbitrary facts about malware detection names and detection rates on VT. (thread)
@FrodeHommedal @alexcpsec Why use #AI for #cybercrime? Why spend time and effort when current methods are still effective. Folks wrongly abstract cybercrime away from the fact that ppl engineer and operate criminal enterprise. They’re not out to follow a trend to sell a product. #cybersecurity #infosec
Just Another Nerd @NicoleBeckwith
41K Followers 8K Following Manager, Threat Operations @kroger 🍓 Intel, Hunting, Detection Engineering, Insider Risk & Fraud. 💻 Fmr LE & DFIR for OH & Secret Service TF. ✝️ #FSDCharlie-rose Harristo.. @RosHarrist
78 Followers 5K FollowingPauline Jaquet @pauline_ja57613
94 Followers 5K FollowingCarolina Huckle @CaroliHuc
38 Followers 5K FollowingYuriko Nilsson @YuriNilsson
37 Followers 5K FollowingKarrie Hannan @hannan25206
67 Followers 5K FollowingShanon Minyard @minya_sha
75 Followers 5K FollowingAdelia Khazaleh @KhazaAdel
73 Followers 5K FollowingJuliette Fitzhenry @JulietteFi8018
67 Followers 5K FollowingKendra Rimar @kend_rim
16 Followers 3K FollowingJay Beale @jaybeale
7K Followers 4K Following @InGuardians CEO, Bustakube, Peirates, @CISecurity OG, BastilleLinux, #kubernetes @BlackHatEvents Trainer,#neurodivergent fam, he/him, [email protected]August @AugustVansickl2
1K Followers 1K Following Red Teamer | Hacker | IR | Former Geoint. Currently identifying as a Strongman. Memes. Blogs: https://t.co/oOahjv4mMOLaishia Zalewski @zalewski83718
108 Followers 3K FollowingS1ckB0y 🤖 @S1ckB0y1337
1K Followers 1K Following Eternal Noob || Hacker @EY_Greece "I'm matter, but I don't matter" - $uicideboy$Sharon Powell @SharonPowe16961
107 Followers 3K FollowingJeanne @jeanne_likes
301 Followers 3K FollowingLuann @tucker_luann86
130 Followers 3K FollowingNancy Jallow @NancyJallo43345
93 Followers 3K FollowingMinnie @minnie100scott
223 Followers 3K FollowingAllyson Fowler @AllysonFow70474
109 Followers 3K Followingcrawler_cookie_0 @crawler_cookie0
58 Followers 4K FollowingLona @lona_hokenson95
244 Followers 3K FollowingHelen @helen8malone
150 Followers 3K Followingmer0llac0aster @mer0llac0aster
627 Followers 5K Following he/him. multitool; giver of unsolicited restaurant picks; one-person defender of cybers. now on Post: https://t.co/2kQCcLFXRTIAMERICA @EricaZelic
7K Followers 4K Following Still exploiting weak passwords for fun and profit. Your perception is not my reality. Posts don't represent my employer(s).Motega @paj853qnggqk
50 Followers 258 Following CRYPTO PROMOTER. #BoJack_MeMe Partner DM FOR PROMO 📩#BTC #ETH #DOGE #SHIB #PEPEwwp96 @wwp96
1K Followers 3K FollowingRikard Andersson @RikardA76
102 Followers 1K Followingfrank s @NinjaStyle82
791 Followers 801 Following Pentester OSCP, OSCE #infosec https://t.co/wUVz20eyRSThe Vertex Project @vtxproject
2K Followers 4K Following On a mission to create an intelligence-driven future with Synapse.Fabian-Denis Borz �.. @ThisIsThePolic5
2K Followers 3K Following If you think you are secure, think again! | Penetration Tester | Defender of the Network | Protector of Servers | Former Blue Teamer | ✞Brent Murphy @brent_murphy
827 Followers 704 Following detection engineering @sentinelone | former @todylsecurity @elastic @endgameinc | oscp | cissp | news @blueteamsec1CHA Minseok(Jacky) @mstoned7
3K Followers 5K Following CHA is my family name. Senior Principal Threat Intelligence Researcher at AhnLab. / Keybase : https://t.co/lgq9EGlrq8 / Tweets are my own.P3RPL3X_x25 @P3rpl3xX25
18 Followers 192 Following Senior Cyber Security Analyst, Blueteamer and HackerEli Gaultney @eligaultney
624 Followers 964 Following love-mongerer and ethical hacker | cyber soc analyst | all views are your ownCRPTO NULENA @CNulena
199 Followers 4K Followingwoodspeed @wucpi
423 Followers 934 Following 2019 Jenkins Security MVP | CRT, OSCP, eWPT, eWPTX, eMAPT | Views and opinins are my own.Golan Cohen @Golan13
35 Followers 173 FollowingAsaf Hecht @Hechtov
670 Followers 312 Following A passionate Cyber Researcher who is also a former Helicopter Pilot :)//Ascor @AscorGames
121 Followers 443 Following DFIR & Academy @ BDO // Formerly AppSec/SecConsult // Hacker // Programmer // Reverse Engineer // Cryptographer // Privacy advocate // Cat dad // Gamer // ADHDFlorian Roth @cyb3rops
180K Followers 2K Following Head of Research @nextronsystems #DFIR #YARA #Sigma | detection engineer | creator of @thor_scanner, Aurora, Sigma, LOKI, YARA-Forge | always busy ⌚️🐇Andrew Thompson @ImposeCost
34K Followers 1K Following Head of Research and Discovery @Mandiant/@GoogleCloud. Understanding and countering adversaries. Posts attributable to me—not my employer.SwiftOnSecurity @SwiftOnSecurity
403K Followers 9K Following computer security person. former helpdesk.MalwareTech @MalwareTechBlog
295K Followers 1 Following Not here anymore. Profiles: https://t.co/sFoOuGmYK2Lesley Carhart @hacks4pancakes
168K Followers 7K Following ICS DFIR @dragosinc, martial artist, marksman, humanist, Lvl14 Neutral Good rogue, USAF Ret. Tweet *very serious* things about infosec. Thoughts mine. They/themmeg west @cybersecmeg
137K Followers 1K Following #CISSP | #CCSP | MSc #Cybersecurity | Sr. Cybersecurity Consultant @CrowdStrike | Tweets about #dogs & travel & APTs, oh my! | Opinions are my own.Corgi @corg_e
48K Followers 3K Following ssh’d into the espresso machine // chaotic neutral // (mostly) harmless pentester // president @bsidesnash // organizes @defcon615vx-underground @vxunderground
291K Followers 211 Following The largest collection of malware source code, samples, and papers on the internet. Password: infectedPentesterLab @PentesterLab
153K Followers 0 Following We make learning web hacking and security easier. Online systems, code review, videos & courses that can be used to understand, test and exploit bugs!Ned Pyle @NerdPyle
28K Followers 982 Following Principal PM. Former USMC 0341. Chicago Tavern style. You may know me from SMB, SR, SMS, DFSR, & AD. Or not. I'm me, not my employer. Be anti-racistBleepingComputer @BleepinComputer
212K Followers 175 Following Breaking cybersecurity and technology news, guides, and tutorials that help you get the most from your computer. DMs are open, so send us those tips!@mikko @mikko
231K Followers 932 Following Technology speaker and author. Chief Research Officer at WithSecure.Justin Elze @HackingLZ
52K Followers 5K Following Hacker/CTO @TrustedSec | Former Optiv/SecureWorks/Accuvant Labs/Redspin | Race carsrootsecdev @rootsecdev
24K Followers 1K Following Security Consultant @TrustedSec | Military grade meme poster, researcher, cloud penetration tester, voider of warranties. My thoughts are my own.John Hultquist @JohnHultquist
28K Followers 1K Following Chief Analyst, Mandiant Intelligence @Google. @CYBERWARCON and @SLEUTHCON founder. Johns Hopkins professor. Army vet.MalwareHunterTeam @malwrhunterteam
219K Followers 36 Following Official MHT Twitter account. Check out ID Ransomware (created by @demonslay335). More photos & gifs, less malware.Girth Brooks @r0wdy_
17K Followers 1K FollowingJohn Hammond @_JohnHammond
240K Followers 2K Following Hacker. Cybersecurity Researcher @HuntressLabs || https://t.co/qUeDM3lSClYarden Shafir @yarden_shafir
19K Followers 271 Following A circus artist with a visual studio licenseJake Williams @MalwareJake
131K Followers 2K Following Breaker of software | GSE #150 | CTI/DFIR | @ians_security faculty | Bookings: jake at malwarejake dot com | He/himBarak Ravid @BarakRavid
316K Followers 788 Following Political reporter for Axios covering foreign policy & the 2024 election. CNN analyst. Washington correspondent for Walla. Author of Trump's Peace. link in BioSteven Adair @stevenadair
3K Followers 417 Following President @Volexity | Malware Analyst's Cookbook | Not easily rattled 😂B:\a.zza @mcbazza
3K Followers 2K Following I.T. geek. Does things with computers/tech. All views are own. Don't take seriously. Or, should you? Servant to ̷5̷ 4x cats. He/him @[email protected]Chaofan Shou @shoucccc
8K Followers 2K Following phd student @ucberkeley working on security (#fuzzing #plse #llm) / intern @hackthedefiNancy Pelosi Stock Tr.. @PelosiTracker_
561K Followers 224 Following Highlighting Politicians' trades so we can invest alongside Goal: get them banned from trading Powered by @joinautopilot_Justin Ibarra @br0k3ns0und
1K Followers 799 Following threat research & detection engineering lead @elastic by way of @endgameinc | compulsive heavy iron displacer | I always like my own tweetsMichael Barclay @michaelbarclay_
365 Followers 101 Following Architect of Defensive Services @specteropsMatt Graeber @mattifestation
314 Followers 0 Following Romans 12:2 Hebrews 13:7-9 Domine, ad quem ibimus?hi^^ @collysucker
119 Followers 51 FollowingwatchTowr @watchtowrcyber
2K Followers 9 Following Your very own APT group, in an Attack Surface Management solution.LuemmelSec @theluemmel
6K Followers 486 Following I speak BloodHound. Husband, Father, IT-Guy, Security-Noob Blog: https://t.co/PXB35KEqs6 GitHub: https://t.co/Unp9jZOpBnSECurityTr8Ker @SECurityTr8Ker
3K Followers 5 Following I monitor the SEC's RSS feed for 8-K and 6-K filings with Item 1.05. Last SEC check: 2024-04-30 08:09:40 ET.VR @angel11VR
362 Followers 173 Following malware hunter | threat researcher enthusiast https://t.co/7UZMsTWOIr https://t.co/XxImbKHJ53 ~ DO NO HARM~Brute Bee @BruteBee
3K Followers 443 Following 🛡️ #EthicalHacker & #InfoSec Pro | Lover of Digital Forensics 🔍 | Purple Teamer 🚀 | Let's secure the web!Fox_threatintel @banthisguy9349
7K Followers 157 Following Just a person who is against cyber crime.Recon InfoSec @Recon_InfoSec
11K Followers 569 Following Managed Detection & Response #MDR provider serving gov't, enterprise and critical infrastructureSublime Security @sublime_sec
2K Followers 18 Following The free and open platform for preventing email attacks like BEC, malware, and phishing using AI and a transparent detection engine.CloudSecList @CloudSecList
1K Followers 1 Following The best way to stay on top of the cloud security landscape without having to be overwhelmed by all the noise | Curated by @lancinimarcoMayfly @M4yFly
5K Followers 754 Following Former Dev and DevOps| Pentester and red teamer at orange cyberdefense | OSCE³| Tweet are my own| discord: m4yflyAugust @AugustVansickl2
1K Followers 1K Following Red Teamer | Hacker | IR | Former Geoint. Currently identifying as a Strongman. Memes. Blogs: https://t.co/oOahjv4mMO7h3h4ckv157 @7h3h4ckv157
18K Followers 79 Following Reformed Hacker | Hall of Fame: Google, Apple, NASA, 𝕏 (Twitter) & Many more | CVE ×4 | HTB Rank: Guru | Engineering + Research | ClandestineSwissky @pentest_swissky
17K Followers 2K Following RedTeam | Pentest Author of PayloadsAllTheThings & SSRFmap https://t.co/w1ZLRqoafGAntonios Tsepouras @tony_tsep
345 Followers 571 Following Cyber Security Consultant @Ordina Bug Bounty Hunter @Hacker0x01 The man may keep me down but opinions are my own.Andreas 💻 @superhedgy
483 Followers 940 Following Information Security Ninja at @SpiderLabs / Breaking things 4 Fun & Profit / I know that I know nothing about InfoSec 💻 🦔 📚 / $ sudo follow_meRenos @r3n_hat
1K Followers 102 Following Cyber Security Addicted. Developer: GRAT2, SharpWifiGrabber, XORedReflectiveDLLCloudBreach @Cloud_Breach
4K Followers 61 Following 🌩️ Empowering You to Defend Against Cloud Breaches 🌩️Filip Dragovic @filip_dragovic
6K Followers 1K FollowingRedTeamTacticsAcademy @RedTeamTactics
2K Followers 250 Following Outsmart, Outmaneuver, Redefine the TacticsS1ckB0y 🤖 @S1ckB0y1337
1K Followers 1K Following Eternal Noob || Hacker @EY_Greece "I'm matter, but I don't matter" - $uicideboy$Ali Hussein @0xanalyst
354 Followers 660 FollowingBen Barnea @nachoskrnl
1K Followers 376 Following Security Researcher @ Akamai. Windows vulnerabilities & internals research. Opinions and tweets are my ownOvie @ovie
2K Followers 314 FollowingJared Barnhart @bizzybarney
1K Followers 401 Following Father, forensic analyst, DI Specialist @Cellebrite. Opinions are mine.Pwned Labs @PwnedLabs
784 Followers 47 Following Pwned Labs delivers fun and immersive cybersecurity training experiences for individuals and businesses. Join the community: https://t.co/kyG413GZDaMerill Fernando @merill
15K Followers 3K Following Product Manager @microsoft | Tweets my own Built → https://t.co/ujxKqxXjf2 • idPowerToys • Graph X-Ray • https://t.co/tSWrIw8Ajh Sign up to my weekly newsletter → https://t.co/tPzAEl0ZuqMarc Smeets 🌻 @MarcOverIP
4K Followers 403 Following Does a thing or two with security @OutflankNL | RedELK developer | Petrolhead | Champagne lover | Don't Panic | Try HarderGreg Darwin @gregdarwin
2K Followers 659 Following Software development manager for Cobalt Strike @FortraOfficial | Professional nerd | Star Wars geek | WednesdayiteEmeric Nasi @EmericNasi
5K Followers 427 Following CyberSecurity researcher, developer of MacroPack Pro and BallisKit offers. I have a passion for all infosec subjects especially redteam. My tweets are my own.Karl @kfosaaen
5K Followers 937 Following VP of Research - @netspi Co-author of “Penetration Testing Azure for Ethical Hackers” (https://t.co/R8AjWWbkIL). @kfosaaen on most other platformsMarius Solbakken @mariussmellum
1K Followers 247 Following Co-founder and Principal Cloud Engineer @ Fortytwo, Microsoft MVP, Host of the CloudFirst Podcast and the Blåskjermbrødene podcast, Identity specialistChris Duggan @TLP_R3D
4K Followers 2K Following Inventor of Patent Pending Endpoint Threat Intelligence Agent (GB2314601.2)HackManac @H4ckManac
28K Followers 181 Following We manage the largest repository of successful public known cyber attacks aiding our customers in crafting superior Cyber Security Strategies optimizing budgetsTI Research @tiresearch1
694 Followers 102 Following Threat Intelligence Feeds, Automatically generated list of IOCsWarMonitor 🇺🇲�.. @TheWarMonitor
80K Followers 2K Following Questioning questionable political & geopolitical events. OSINT/Indie/Fact checker/Exposes corruption/Antifascist/Pro Ukraine. The REAL & Original War Monitor.Full @rapid7 analysis of PAN-OS CVE-2024-3400 now available from @stephenfewer and our stellar new research teammate @ChairNectar! Spoiler: It's a two-vuln exploit chain. attackerkb.com/topics/SSTk336…
The Copenhagen Book - provides a general guideline on implementing auth in web applications. It is free, open-source, and community-maintained dlvr.it/T5GzYR #cyber #threathunting #infosec
Check out my new project Microsoft-Analyzer-Suite (Community Edition). A collection of PowerShell scripts for analyzing data from Microsoft 365 and Microsoft Entra ID extracted by Microsoft-Extractor-Suite. @InvictusIR #M365 #BEC #DFIR github.com/evild3ad/Micro…
XZ Uitls backdoor TLDR: 1) we don' know who did it (from a human pov) - we know the GitHub account that was used. 2) this was caught by a ninja and it didn't deploy to loads of stuff. Some linux distros like KALI managed to get infiltrated (the backdoor works on x86/x64 Linux…
Great blog post on resilience updates for #Entra workload identity authentication techcommunity.microsoft.com/t5/microsoft-e…
I’m obsessed with great leadership. But when I was young, I wasted years and opportunities not knowing what great leadership looked like. Learn from my mistakes. 21 clear signals you have a great leader:
📢 New Analyst module on ACEResponder! Investigating Entra ID Attacks #Azure #ThreatHunting #DFIR aceresponder.com/learn/entra-id
I'll also acknowledge there's a Windows/software bias in these selections, and it will be interesting to see how a migration to cloud/third-party identity will dramatically shift what "foundational knowledge" is necessary in #infosec in the future
What’s New in Microsoft Teams | January 2024 - External domain activity report in Teams admin center - The report will surface the list of domains that your tenant has communicated with via managed communication, and how… dlvr.it/T3ck9b #cyber #threathunting #infosec
In the previous month, I’ve written a blog post series about #MicrosoftEntra #WorkloadId: cloud-architekt.net/entra-workload… In this thread, I like to give you a summary about a few key aspects about managing non-human identities in #EntraID which has been also described in the articles.
What are the hot command line tools that you believe are underrepresented out here? Binary Refinery is one that I feel is still lesser known. If you were like me hoping for a command line version of CyberChef, check this project out: github.com/binref/refinery
Good read here. From hybrid / fully joined devices to Entra ID hybridbrothers.com/device-to-entr…
Miss our Anti-Cast yesterday, "How to Use 'Leaky Vessels' for Container Escape in Kubernetes," with @jaybeale from @inguardians ? Watch the recording here! ➡ youtube.com/watch?v=HCYv0q…
I wrote another blog post with @svch0st Remember to check your netscalers* when a critical CVE has been released just in case something nasty snuck in before you could apply the mitigations/patch. (s/netscalers/all edge appliances rn/) cybercx.com.au/blog/netscaler…
Outlook Vulnerability Discovery and New Ways to Leak NTLM Hashes dlvr.it/T2td9l #cyber #threathunting #infosec
Since we're talking about MS Graph... Did you know that the combination of... ● Organization.ReadWrite.All ● Policy.ReadWrite.AuthenticationMethod ...enables escalation to Global Admin? Details here: posts.specterops.io/passwordless-p… Enforce 👏 M 👏 F 👏 A 👏for Global 👏 Admins 👏
What hidden privileges are lurking in your Entra environment? In this blog post, @_wald0 shows one example of a hidden, highly privileged role that may be granting more privileges than intended (or known). ghst.ly/49EThTA
Atomic Red Team Maintainer Jose Hernandez explains why adversaries have their heads in the cloud. Read more: redcanary.com/blog/cloud-att…