-
Tweets87
-
Followers236
-
Following113
-
Likes392
Long-awaited parallel (threaded) queries arrive in MSTICPy! 🏃♀️🏃♀️🏃♀️ Split big queries into separately executing chunks or across multiple workspaces and clusters.
Long-awaited parallel (threaded) queries arrive in MSTICPy! 🏃♀️🏃♀️🏃♀️ Split big queries into separately executing chunks or across multiple workspaces and clusters.
🚨Small update for TokenTacticsV2 ▫️Two new device platforms ▫️Linux, since it's now supported by Conditional Access ▫️OS/2, because it's not 😁 github.com/f-bader/TokenT…
Official confirmation from Microsoft that there is no supported way to rotate nor change DPAPI backup keys! Compromised keys? ➡️ Burn the domain and rebuild a new one 💥
I know a lot of excellent people are looking for jobs right now. We have several openings at @redcanary, including my peer, Senior Director of Detection Engineering, and a Threat Hunter on a team I lead. I hope you'll consider applying or sharing. redcanary.com/job-openings/
Small update to roadtx, with thanks to @Flangvik for the idea: you can now do the interactive authentication with a "borrowed" ESTSAUTHPERSISTENT cookie from a browser, to get tokens or have an authenticated browser session.
New blog is out! OneDrive to Enum Them All trustedsec.com/blog/onedrive-… Major updates: • database storage • logging of previous runs • easily append digits or strings to usernames • stale job detection • skip tried usernames Special thanks to @DrAzureAD and @thetechr0mancer!
@DrAzureAD brings some valid points. MemberLevel user can read CA Policies. This has not always been understood, since the GUI and MS Graph requires roles for this, but not Azure AD Graph API. Also means, that if you have gaps in CA, those can be read by normal user
@DrAzureAD brings some valid points. MemberLevel user can read CA Policies. This has not always been understood, since the GUI and MS Graph requires roles for this, but not Azure AD Graph API. Also means, that if you have gaps in CA, those can be read by normal user
@Secureworks' latest Threat Analysis report "Tampering with Conditional Access Policies Using Azure AD Graph API" out now! 1️⃣ Regular users can read Conditional Access Policies (CAPs) 🤔 2️⃣ Administrators can modify CAPs without proper logging 😲 secureworks.com/research/tampe……
This Friday I'll be running an #AzureAD token workshop in @NorthSec_io conference, Montreal, Canada. Here are some teasers 😋 nsec.io/schedule-works…
🎉 @SantasaloJoosua, Principal Security Researcher @Secureworks , will be joining us next week (2nd May) to talk about "Detecting gaps in Azure and Azure AD Security". 🤖 He's a talented hacker & NodeJS dev wt a focus on Azure, Azure AD, and M365. RSVP - lnkd.in/et5YmHvM
Next version of #AADInternals will be published during the @BlackHatEvents #BHAsia on May 11th at #BHArsenal! Some teasers: ◾ Exploitation tooling for findings covered in our Briefings talk with @SravanAkkaram 😈 ◾ Totally re-written token handling 🤞 ◾ Automatic FOCI client…
Into Windows security / forensics? I just released a post I started writing 3 years ago: blog.christophetd.fr/dll-unlinking/
I've long been interested in how EDRs work under the hood and how we can apply a more evidence-based approach to evasion. I'm happy to announce that I've written a book covering these topics with @nostarch which is now available for preorder 🎉 nostarch.com/book-edr
This quarter @Secureworks had two researchers in the @msftsecresponse researcher leaderboard🔥 Congratulations to all other researchers who made it, great job everyone! My colleague @SantasaloJoosua have had a fantastic streak this year keeping us all safe - so proud of working…
New chapter of #AzureAD Attack & Defense Playbook: Are you looking for a way to track and verify your identity security posture? @samilamppu, @PitkarantaM and I have worked on a solution which includes also comparison to recommendations and #MITRE mapping. github.com/Cloud-Architek…
I'll deliver a workshop, "Tokens, everywhere!" at @NorthSec_io, Montreal 🇨🇦 in May! In this hands-on deep-dive, I'll cover #AzureAD #OAuth implementation, different token types, #FOCI, and various attack scenarios. Check out details and get tickets at nsec.io
Check out this new doc that lists all the 🍪 cookies involved in an Azure AD authentication. 😀 learn.microsoft.com/azure/active-d…
Our latest full-length episode is available! @olafhartong was kind enough to join us again after a few years and catch up - catch the episode wherever you consume podcasts, or at the YouTube link below! youtu.be/47pwrsMucSg
If you are a user of Microsoft Defender for Endpoint or are considering it you might find this series useful. A 🧵 The first edition covers the differences between #MDE and #Sysmon and telemetry acquisition 1 - Sysmon vs Microsoft Defender for Endpoint medium.com/falconforce/sy…
⚡️MSTICpy is a powerful python library for threat intelligence and threat investigation! I created a new security artwork for a brief overview. Learn more with @ianhellen & @PeteABryan at BlueHat for an in-depth look. 🤓@msticpy #ThreatIntel #infosec #python @MsftSecIntel
Daniel Abay @Ab4y98
185 Followers 1K Following
Melissa @kling_shan75739
75 Followers 3K Following
FranchFrais @FranchFrais
0 Followers 281 Following
Nya Klocko @NKlocko49702
2 Followers 96 Following
Tiago Sequeira (@x13@... @_x13
269 Followers 1K Following
Shane @sbh_csec
25 Followers 756 Following
Paul Lipscombe @PaulLipscombe98
4 Followers 113 Following
Lee Echo @iflywithoutwind
9 Followers 149 Following
Ivo @ivoheus
121 Followers 877 Following Natuurliefhebber met een passie voor macro en landschap fotografie.
Venkatraman K @r3dw0lf_sec
283 Followers 2K Following OWASP Chennai Lead l Security Researcher | Red Teamer | CARTE | CRTO | CRTE | CRTP | CEH
José Cachapa @JoseCachapa
31 Followers 391 Following Security Consultant | Azure Cloud Engineer ☁| Microsoft 365 | MCT
Andrew McCallum @atr8472
725 Followers 6K Following
Todd Pigram @pigram86
1K Followers 2K Following Cloud, Open Source, DevOps , Security & a health and Fitness nut. Words are my own. https://t.co/pwpRyM7x3v
Chris Romano @C_r0m132409
24 Followers 189 Following Proactive services @PaloAltoNtwks, Cloud security enthusiast trying to learn and share all the knowledge!
Artem Sychev @sychev_a_k
74 Followers 710 Following #cybersecurity expert, #datascience interesting #threatintelligence #threathunting #soc #malware #DFIR #machinelearning
pfransc @pfransces
78 Followers 2K Following
Dax @detectionlife
133 Followers 2K Following
Nurfed @Nurfed1
391 Followers 1K Following Security researcher - Red Teamer - Team Tasteless CTF boomer
Devin McLean @devinmclean
427 Followers 2K Following SOC & cyber infrastructure manager. I hunt the badness alongside my team. Father of 3. I like video games. Engineer at heart.
Victor Lima @VictorLima17
145 Followers 2K Following
tjepl @tjepl
231 Followers 3K Following
. @NotSoFastRoach
5 Followers 2K Following
test domain @User2Micro
719 Followers 4K Following
Spiros Fraganastasis @m3g9tr0n
14K Followers 1K Following Team @hashcat! Eternal n00b and knowledge seeker! Age is just a number and motivation is the fuel! Whatever you do in your life, do not forget to be humble.
Eric Woodruff | MVP |... @ericonidentity
2K Followers 715 Following Security researcher @SemperisTech. Microsoft Security MVP, Entra nerd. Part-time hiker, full-time dad and partner. Opinions expressed are from my cat.
PIPΔS @pipasnacave
424 Followers 928 Following InfoSec Pentester, likes to socialize with machines | i will be at @[email protected]
Bene @m0lto_bene
18 Followers 125 Following Red Team Operator at @nsideattack. Focus mostly on Malware Dev, Windows, AD, Entra ID and Azure
bitdressing @jkbkw
1 Followers 4K Following
LuckY @L_uckyY
198 Followers 2K Following Generally interested in computers (DFIR/pentesting/networking) and likes to play wargames/CTF. Deleting tweets regularly. Likes are my way of bookmarking.
Russ @rustla
248 Followers 647 Following Pentester who often hangs out with the blue team. (he/him) https://t.co/1FK1qTVE4f | https://t.co/am6hJzTsmf
Fletcher Davis @gymR4T
897 Followers 832 Following Director of Research @BeyondTrust | Former Red Team @CrowdStrike @Mandiant
Chris Suozzi @chris_suozzi
21 Followers 4K Following
Chris Beckett @cbecks_2
804 Followers 2K Following Infosec and the Green Bay Packers. Interested in all things DFIR, Detection Engineering, Purple, and CTI. Opinions are mine, certainly not those of my employer.
rayh4c @rayh4c
2K Followers 4K Following
barbittybarnum @lerealmrteatime
0 Followers 585 Following
Thomas William @williamthomasdd
8 Followers 100 Following
Thomas Roccia 🤘 @fr0gger_
32K Followers 2K Following AI Security x Threat Intel · Sr. Threat Researcher @Microsoft · Creator of #Unprotect & #NOVA · Malware Warlock · Python 🧡 · Prev @McAfee_Labs · Views mine 😈
Renzon @r3nzsec
4K Followers 905 Following IR/Forensics @Unit42_Intel | Co-Founder @guidemtraining | Contributor/Analyst @TheDFIRReport @XintraOrg | CTF member @_hackstreetboys
Patrick Klepek 🎃 @patrickklepek
157K Followers 2K Following editor @remapradio, @crossplayblog // pr: [email protected] and [email protected] // tips: [email protected] // signal: 224-707-1561
Pavel Pitrucha @PavelPitrucha
5 Followers 227 Following
Katie Nickels @likethecoins
55K Followers 3K Following Director of Intel at @redcanary. SANS Certified Instructor for FOR578: CTI. Senior Fellow at @CyberStatecraft. She/her. Mastodon: @[email protected]
Sergio Caltagirone - ... @cnoanalysis
16K Followers 1K Following President @AcademyThreat & Tech Director @GblEmancipation; Fmr @Dragosinc, @Microsoft & @NSAGov He/Him NOW AT https://t.co/ZWCsxBUFeG
DCP Podcast @dcpthepodcast
1K Followers 12 Following Detection: Challenging Paradigms. The premiere adversary detection podcast. Powered by @SpecterOps. Link below to all supported platforms:
Merill Fernando @merill
19K Followers 4K Following Product Manager @microsoft | Tweets my own Built → https://t.co/ujxKqxXjf2 • https://t.co/QbUp63ffXf • Graph XRay • https://t.co/tSWrIw8Ajh 📰 Newsletter→ https://t.co/tPzAEl0Zuq 🎙️ Podcast→ https://t.co/TBlNKTzn8t
Jose Enrique Hernande... @_josehelps
3K Followers 2K Following 🛡️ Threat Research Director @Splunk ❤️ Scuba Diving 🔧 Maintainer of #AtomicRedTeam #LOLDRIVERS #LOLRMM #LOLBAS
Kostas @Kostastsale
18K Followers 367 Following @TheDFIRReport | No longer active here – find me on Bluesky: https://t.co/qHzDSxCRfG. 🇬🇷🇨🇦
Matt Zorich @reprise_99
14K Followers 2K Following @Microsoft Security | https://t.co/HWozKuixTi | Tweets are my own
Microsoft BlueHat @MSFTBlueHat
5K Followers 203 Following BlueHat is where the security research community and @Microsoft security pros come together as peers, to connect, share and learn. Run by @MSFTSecResponse
Jamie Levy🦉 @gleeda
10K Followers 6K Following @Volatility Core Dev | Art of Memory Forensics co-author | Director of Adversary Tactics @HuntressLabs | #DFIR enthusiast/trainer | [email protected]
Christopher Romano @C_R0M13
180 Followers 1K Following Technical Lead @CrowdStrike | Dad, Cloud DFIR, Hacker, Cybersecurity and Cloud enthusiast that’s trying to learn all the things & share the knowledge.
Michael Hendrickx @ndrix
675 Followers 1K Following Security Research at Microsoft, in my spare time I try to ████████████ but █████ has done ████ to it. Making beats drop and calc.exe's pop. :)
Mehmet Ergene @Cyb3rMonk
13K Followers 438 Following https://t.co/uAlYlXIpyV Learn #KQL for #ThreatHunting, #DetectionEngineering, and #DFIR @BluRavenSec | Microsoft Security MVP | #DataScience
Justin Elze @HackingLZ
65K Followers 5K Following CTO @TrustedSec | Former Optiv/SecureWorks/Accuvant Labs/Redspin | Race cars
Jose Rodriguez 🇵�... @Cyb3rPandaH
6K Followers 343 Following #CyberDefense #AI #DataScience @GeorgeMasonU @NOVAcommcollege @pucp
Nevada @nevadaromsdahl
694 Followers 515 Following Professional hacker. Amateur father, husband, hunter, musician, gamer. (he/him) All views and comments are my own opinion.
Chris Beckett @cbecks_2
804 Followers 2K Following Infosec and the Green Bay Packers. Interested in all things DFIR, Detection Engineering, Purple, and CTI. Opinions are mine, certainly not those of my employer.
James S. @securitypiper
14 Followers 133 Following IT professional, lifelong learner, interested in all things cybersecurity, bagpipes 🏴, or Dungeons and Dragons.
Mike Murray @schpanky247
231 Followers 1K Following
Beau Bullock @dafthack
18K Followers 656 Following Hacker, trainer, and guitarist | Black Hills InfoSec #RedTeam | @BreakForge Training | Produces music to hack to at @N0BANDW1DTH
Justin @j_schoen13
462 Followers 2K Following Detection Engineering @crowdstrike | Fmr. @redcanary | Golfer | New Dad ❤️
Josh Buck-Rogers @_coeus
299 Followers 1K Following Security Engineer, Interested in DevOps, crap at woodwork. Views are my own and all that jazz.
rce_trent @rce_trent
216 Followers 772 Following Disclaimer: Does not represent professional advice, opinions, or employer. CTI-League Member. Former Fortinet. Former Symantec. Former Big4. Former Transformer.
alvarohoyo @alvarohoyo
233 Followers 2K Following
Andrew Krug @andrewkrug
1K Followers 543 Following Southern Oregon Based Security/InfoSec and Saxophone Maven. Cloud Security Instructor for @Antisy_Training. #datadog https://t.co/9lsBAYALTp
Nick Frichette @Frichette_n
6K Followers 2K Following Staff Security Researcher @datadoghq | DEF CON/Black Hat main stage speaker | he/him | OSCP OSWE | Tweets are my own | Created https://t.co/QGWMJjv9pc
Kinnaird McQuade 💻... @kmcquade3
6K Followers 2K Following Chief Security Architect @BeyondTrust. Follow for AI, Hacking, Startups. Founded @NightVision_inc. Ex @Square, @Salesforce 🇵🇭🇺🇸
Wes McKinney @wesmckinn
58K Followers 899 Following Principal Architect @posit_pbc, GP @ComposedVC, Co-founder @voltrondata. OSS: @ApacheArrow @pandas_dev @IbisData, "Python for Data Analysis" book
Fabian Bader @fabian_bader
9K Followers 823 Following #Security #Azure #AAD #MDE #M365 #AD #PKI Microsoft MVP Tweets and opinions are my own @[email protected]
goproslowyo @goproslowyo
1K Followers 4K Following Hacker. (SRE|DevOps|Cloud|Security) Professional. prev:🚀, @Google, @Apple and @Twilio/@SendGrid who's tweets are these? they're definitely not mine
dorota @dorotaq
796 Followers 447 Following
Gary McGraw @cigitalgem
5K Followers 21 Following software security #swsec machine learning security #mlsec Tech | Life | Music [email protected]
Lee Lawson @leejlawson
478 Followers 778 Following Ex Mil. Intel, bomb disposal, hacker and hacker hunter. Screenwriter. Represented by @imagine_talent
chiheb chebbi @chihebchebbi201
2K Followers 997 Following
@[email protected] @bradarndt
511 Followers 755 Following Moved to mastodon, find me @[email protected]
Jimmy Vo @JimmyVo
4K Followers 2K Following
Paul Asadoorian @paul... @securityweekly
76K Followers 9K Following Founder of Security Weekly, Principal Security Evangelist at Eclypsium
Sebastián Ramírez @tiangolo
80K Followers 329 Following Creator of @FastAPI, Typer, SQLModel, Asyncer, etc. 🚀 From 🇨🇴 in 🇩🇪 . Open Source, APIs, and tools for data/ML. 🤖
Daniel Roy Greenfeld @pydanny
17K Followers 690 Following Lead of @AirWebFramework & Cookiecutter (5M+ downloads) Maker at @feldroydotcom with wife @audreyfeldroy Dad 🧸 Ex-NASA 🚀 BJJ🥋 Coauthor Two Scoops of Django🍨
Samuel Colvin @samuel_colvin
17K Followers 847 Following Building The @pydantic Stack - Validation, AI and Logfire.
Jack Daniel is over t... @jack_daniel
59K Followers 3K Following Storyteller, wanderer, comic, historian, world’s oldest millennial. I used to do stuff, now I do other stuff. @[email protected]
Jared Atkinson @jaredcatkinson
10K Followers 2K Following | CTO @specterops | Host @dcpthepodcast | Ex PowerShell MVP | USAF Vet | FC Bayern Supporter | Language Learner 🇳🇴 🇮🇹 🇧🇷 |Trends for United States
You might like
