riftman @riftman
Information/Cyber Security Specialist. CISO. Head CSIRT. Consultant. Professor and Researcher. https://t.co/3PrtNAgVZX linkedin.com/in/tiagopedros… Joined January 2009-
Tweets2K
-
Followers713
-
Following2K
-
Likes1K
I was today years old when I discovered the amazing uncoder.io platform, which translates (among others) Sigma rules to the search language from a variety of platforms (in the screenshot below to the Splunk Search Processing Language. Well done, @SOC_Prime 👏
I've been reverse engineering the xz backdoor this weekend and have documented the payload format and written a proof-of-concept exploit for the RCE. The payloads are signed with an ED448 key, so I patched my own key into the backdoor for testing. :-) github.com/amlweems/xzbot
The xz backdoor was initially caught by a software engineer at Microsoft. He noticed 500ms lag and thought something was suspicious. This is the Silver Back Gorilla of nerds. The internet final boss.
On February 21, between 11 a.m. and 12.30 p.m., Tiago Pedrosa took part in Cybertheme's round table dedicated to the Cybersecurity in Portugal Report. The aim is to analyze the human component of cybersecurity, attitudes, behaviors and awareness and education in the field.
Chinese Hackers Exploiting VPN Flaws to Deploy KrustyLoader Malware thehackernews.com/2024/01/chines…
30 Handy Bash Shell Aliases For Linux / Unix / MacOS - nixCraft #linux #tips cyberciti.biz/tips/bash-alia…
"ShellGhost: A memory-based evasion technique which makes shellcode invisible from process start to end." #infosec #pentest #redteam github.com/lem0nSec/Shell…
⚠️SANS released their new Memory Forensics class (FOR532). As @SANSInstitute talk about #volatility 3 in this class and to comply with the vol3 license: ‼️SANS published all @volatility 3 related content for free! Slides:sansorg.egnyte.com/dl/hKUKAN7ZDT Labs:sansorg.egnyte.com/dl/u5Tlhm9qk9 #DFIR
Microsoft has observed nation-state threat actor Storm-0062 exploiting CVE-2023-22515 in the wild since September 14, 2023. CVE-2023-22515 was disclosed on October 4, 2023. Storm-0062 is tracked by others as DarkShadow or Oro0lxy.
When you log into a Linux system, make it a habit to look at the processes with this command: ps -auxwf This will list out all processes in tree format. It makes it easy to spot unusual activity. For instance, this is what a PHP reverse bindshell backdoor will look like.
Cyberattaque au CHRSM: quelque 127 gigabytes de données publiées sur le darknet - DataNews datanews.levif.be/actualite/secu…
Des télescopes situés à Hawaï et au Chili ciblés par une mystérieuse cyberattaque | korii. korii.slate.fr/tech/telescope…
A Polícia Judiciária Alerta: Burla através de “Vishing “ policiajudiciaria.pt/burlaatravesvi…
In karmic news today, everyone can listen in on police conversations. Crypto backdoor in TETRA, the standard used in radios all over the world. Details: tetraburst.com Story: wired.com/story/tetra-ra…
Another banger from my team at @bishopfox 🔥 We developed an exploit for CVE-2023-27997: heap overflow 👉 preauth RCE in FortiGate firewalls. 69% of internet-facing firewalls are unpatched, and there are some _old_ (8+ yrs) FortiOS installations still out there 👴 Patch now!
Another banger from my team at @bishopfox 🔥 We developed an exploit for CVE-2023-27997: heap overflow 👉 preauth RCE in FortiGate firewalls. 69% of internet-facing firewalls are unpatched, and there are some _old_ (8+ yrs) FortiOS installations still out there 👴 Patch now! https://t.co/N8pxn1Jeep
Phishing Email Check #infosec #CyberSecurity #CyberSecuritytips #pentesting #redteam #informationsecurity #CyberSec #networking #networksecurity #infosecurity #cyberattacks #security #linux #CyberSecurityawareness #bugbounty #bugbountytips
Nice series introducing cryptography concepts for beginners (credits @sergioprado) Part 1: sergioprado.blog/introduction-t… Part 2: sergioprado.blog/a-hands-on-app… Part 3: sergioprado.blog/asymmetric-key… #cryptography
Weekly analysis is out and what a week.. -🇨🇳 telco ops in Africa -🇨🇳 patriot ops -🇷🇺 router ops 🌐 -🇷🇺 🎣 ops opsec mistakes -🇰🇵 ops against human rights -🇰🇵 🍎 capability -🇵🇰 ops in 🇮🇳 🐧 capability -🇨🇴 ops in 🇨🇴 + the usual tradecraft and tooling.. bluepurple.binaryfirefly.com/p/bluepurple-p…
Linux Log Files Location And How Do I View Logs Files on Linux? buff.ly/3pKsnoC #sysadmin #linux #cybersec
Jovanny Randall @jovanny_ra74916
7 Followers 527 FollowingGeorgiana Alambar @GeorgianaA3395
88 Followers 5K FollowingHealthcareITConnect @HealthITCONNECT
2K Followers 1K Following Connectivity Across The Care ContinuumBenjamin @Benjami44510592
2 Followers 500 FollowingDevr Inc. @DevrOfficial
266 Followers 5K Following Devr is a new Internet protocol for the governance of decentralized privacy networks (DPN), powering a new era for data sharing economiesCarley Horton @CarleyHort49794
115 Followers 3K FollowingDiego Alonso Sánchez @CRDiegol
296 Followers 3K Following CTI | Sec Correlation Engineer at @IBMSecurity | Former IR at @Citi | Cybersecurity | Business Admin | Finance | OSINT | Dogs, Grilling and MotorcyclesCursor Insight @cursorinsight
1K Followers 4K Following The Human Motion Experts Multi-award-winning, AI-based #Cybersecurity #MedTech tools #Biometrics #Authentication #eHealth #DigitalHealth #Parkinson #Alzheimerjuancc @juanc17_20
87 Followers 533 Following Muy argentino, Hincha de Ford y Ferrari. Me importa mi planeta, mis amigos y mi familia. Usuario de tecnologías libres, literatura y ruralidad sustentable.Loughb @Loughb157889
56 Followers 915 Following Coi như bạn nghiện , Sẽ có người như một mã lực để trợ giúp bạnExtreme Bomb @ExtremeBomb710
15 Followers 64 FollowingBitaites @B1ta1tes
6 Followers 98 FollowingCOREnext @COREnext_EU
862 Followers 1K Following Building a trustworthy-by-design computing platform for 6G flagship use cases to consolidate European digital sovereignty and unlock a new economic perspective.Paulo Ribeiro @PauloRi19080645
1 Followers 71 Followingarete @arete06
26 Followers 624 FollowingAI Mastery Solutions @youraimastery
187 Followers 435 Following Empowering Business Owners & Professionals with #Aitools and Resources. Join our free community and get 500+ #prompts and The Ultimate AI Resource Guide!FernandoConceição @AF3rnandoMC
15 Followers 236 Followingnet rider @zeus007atlas
4 Followers 15 Followingimaginetsa @imaginetsa
2K Followers 3K Following Imaginet is a national ISP. We supply ADSL Broadband, Mobile Broadband and all hosting solutions.For more info contact us on 086 111 1101pat z @patz4v
21 Followers 259 Following0xAm1r @Am1r_hy
112 Followers 930 Following CyberSecurity Engineer | Penetration Tester | Red Teamer | Passion for secMetaRed TIC @MetaRedTIC
962 Followers 420 Following MetaRed TIC by Universia una Red colaborativa que apoya la transformación digital de las Instituciones de Educacion Superior IberoamericanasRobert Krauss @rkrauss350
255 Followers 537 Following Reality based business type interested in cloud, virtualization & security. Mentoring early stage companies & my kids. Curing bacon & smoking meats.Diego Pereda @dpereda
8K Followers 8K Following Living in Orlando, delivering magic at Walt Disney WorldOmar Alia @OmarAlia00
9 Followers 171 Following Omar Alia |عمر عالية Network and information security engineer at Princess Sumaya University for technology https://t.co/BWjBCNyebWHisoka @Hisooka25
100 Followers 346 FollowingAYODAHUNSI LAWAL @temiboy1
95 Followers 1K Followingklandestine @klandestine1
2K Followers 4K Following Klandestine metal web magazine on line. Entrevistas,noticias, podcast radiales, cartelera de conciertos, comentario de discos y mas. https://t.co/bapu9eQO1gSakura Kurosawa @SakuraKurosawa
0 Followers 3 Following I generate computer science content. NetRunner with IQ above average. I am Mr.Robot, real One.Netrunner @netrunner01
1 Followers 11 Following GNU Linux Creator. Malware cracker and writer. Machine Learning developer.SwissCognitive, AI Ve.. @SwissCognitive
150K Followers 105K Following We are committed to unleashing the power of AI in the business world. With our AI research, advisory, and ventures, we bring a blend of expertise to the Table.Kevin Baldwin Golf @KevinBaldwinSF
613 Followers 400 Following Family man. Golf instructor. Avid runner. Views are my own.mohammed othman @mohamdpt
46 Followers 526 Following If you want to buy something without looking at the price, go ahead; work without watching the clockMartin Kent @That1ones
108 Followers 1K FollowingSecurity Sisters Netw.. @SSNetworkLLC
114 Followers 812 FollowingAgnani Sanjay @sagnani
22 Followers 3K FollowingAnacomp @AnacompInc
624 Followers 2K Following Fast, accurate AI/ML solutions for digitization, data classification and discovery, and document processing including sensitive data redaction and anonymizationisoftwarestore- compr.. @isoftwarestore1
194 Followers 755 Following iSoftwarestore was launched in 2015 to secure American devices at pocket-friendly prices. Today, it's one of the largest third-party antivirus sellers globally.Erika Sánchez @erikasanchez_mx
860 Followers 1K Following Ing. en Computación. Maestra en Gestión de Tecnologías de Información. Coordinadora General de TI de @unacar y mamá de una hermosa pequeña. ❤️️Viajarvx-underground @vxunderground
290K Followers 209 Following The largest collection of malware source code, samples, and papers on the internet. Password: infectedDave Kennedy @HackingDave
206K Followers 6K Following Founder @Binary_Defense @TrustedSec Co-Owner https://t.co/HQC75WhdJh. @WeHackHealth Podcast. Fam First/Hacker/CSO/USMC/Intel/Fitness. Motto: Make world a better placeSwiftOnSecurity @SwiftOnSecurity
403K Followers 9K Following computer security person. former helpdesk.Hacking Articles @hackinarticles
224K Followers 403 Following House of Pentesters Follow us: https://t.co/Y6XOlSOA92Shira Rubinoff @Shirastweet
57K Followers 29K Following #Cybersecurity & #Blockchain #Advisor, #ThoughtLeader #KeynoteSpeaker & #Author Top ranked #Influencer globally in cybersecurity #AI 🔴 YouTube/ShiraRubinoffTVAli Hadi | B!n@ry @binaryz0ne
29K Followers 569 Following DFIR and Adversary Simulation | DFIR @ ProtonMail | Perfect Stranger | Stronger Together |Florian Roth @cyb3rops
180K Followers 2K Following Head of Research @nextronsystems #DFIR #YARA #Sigma | detection engineer | creator of @thor_scanner, Aurora, Sigma, LOKI, YARA-Forge | always busy ⌚️🐇STÖK ✌️ @stokfredrik
126K Followers 1K Following Hi.. im that hacker / creative that your friends told you about. Creative Director & Hacks all the things at @truesecTroy Hunt @troyhunt
228K Followers 1K Following Creator of @haveibeenpwned. Microsoft Regional Director. Pluralsight author. Online security, technology and “The Cloud”. Australian.Bad Sector Labs @badsectorlabs
6K Followers 440 Following Cybersecurity news, techniques, exploits, and tools every week at https://t.co/UgKmeEEjIV 🐘 @[email protected]Dominik Penner @zer0pwn
6K Followers 2K Following principal security consultant @mandconsulting_. former ssc @nccgroupinfosec. co-founder @hackerschange. vulnerability researcher in the pursuit of knowledgeIsmael Valenzuela @aboutsecurity
16K Followers 9K Following VP Threat Research & Intelligence @BlackBerry ▪️ Ex @Foundstone @Intel @McAfee ▪️ SANS Senior Instructor, GSE #132 ▪️ Author #SEC530 #SEC568 #ThinkRedActBlueThe Cyber Security Hu.. @TheCyberSecHub
161K Followers 403 Following World's Premier Cyber Security Portal™ #cybersecurity #infosec #hacking #tech 📧 [email protected]rui tavares @ruitavares
110K Followers 13K Following historiador. do @livrept. deputado @AssembleiaRepub. vereador na @cmlisboa. docteur histoire et civilisations @EHESS_fr. livros na @edtintadachina. PT/EN/FRRequiem @Requiem_fr
3K Followers 635 Following Sr #DFIR guy at @Mandiant/@Google. Hardware lover. “Too much of anything is bad, but too much good whiskey is barely enough.” @CertSG alumn. Views are my own.Patrick Donegan @HardenStance
2K Followers 262 Following Principal Analyst, HardenStance. Trusted research analysis & insight in IT & telecom security. 🇺🇦 @hardenstance.bsky.social @[email protected]DirectoryRanger @DirectoryRanger
31K Followers 100 Following This account assembles and disseminates information related to Active Directory and Windows security.Craig Rowland - Agent.. @CraigHRowland
7K Followers 288 Following Agentless Linux security and incident response. Linux malware, digital forensics, intrusion detection, and long nights. Founder @SandflySecurity.All about CTF @CTFtime
19K Followers 55 FollowingSL Benfica @SLBenfica
1.8M Followers 432 Following Twitter dos Campeões Nacionais 2022/23 🏆 English account: @SLBenfica_EN 🇬🇧🇺🇸 Modalidades: @ModalidadesSLB 🏑🏀Ben Nassi @ben_nassi
1K Followers 4K Following 🇮🇱 | #BringThemHomeNow | @BlackHatEvents Review Board | @PwnieAwards 23 Winner | Mostly interested in AI Security & Side-channel attacksMichael Koczwara @MichalKoczwara
18K Followers 2K Following Founder @Intel_Ops_io Threat Intelligence, Adversary Infrastructure Hunting, Curated TI Feed (Coming Soon) https://t.co/vixTz8xKuF https://t.co/VQWaze6gaFimaginetsa @imaginetsa
2K Followers 3K Following Imaginet is a national ISP. We supply ADSL Broadband, Mobile Broadband and all hosting solutions.For more info contact us on 086 111 1101TRT World @trtworld
592K Followers 26 Following Where news inspires change. Follow @TRTWorldNow for breaking news and live updates.0xAm1r @Am1r_hy
112 Followers 930 Following CyberSecurity Engineer | Penetration Tester | Red Teamer | Passion for secS4M @s4msecurity
7K Followers 316 Following Thanks to the bot, I share the developments in the field of cyber security. And I do naive work. #CyberNews #bot #intelligenceCyberIQs @CyberIQs_
3K Followers 5K Following CYBER & AI NEWS Aggregator- #infosec #cyber #cybersecurity #cybernews #AI #artificialintelligence #ainews #machinelearning #deeplearning #neuralnetworks #LLMDave Platt @lawncreatures
319 Followers 1K Following Ubergeek, InfoSec, Dad | DFIR, Threat Intel & Pentester | Founder of nothing | Opinions are my mine, not my employerPentesterLab @PentesterLab
153K Followers 0 Following We make learning web hacking and security easier. Online systems, code review, videos & courses that can be used to understand, test and exploit bugs!Sam Curry @samwcyo
77K Followers 943 Following Hacker, bug bounty hunter. Run a blog to better explain web application security.Security Sisters Netw.. @SSNetworkLLC
114 Followers 812 Followingisoftwarestore- compr.. @isoftwarestore1
194 Followers 755 Following iSoftwarestore was launched in 2015 to secure American devices at pocket-friendly prices. Today, it's one of the largest third-party antivirus sellers globally.Universidad de León @unileon
35K Followers 350 Following Fundada en 1979, la Universidad de León (UNILEON) es una institución pública dedicada a la educación superior y a la investigación científica.Erika Sánchez @erikasanchez_mx
860 Followers 1K Following Ing. en Computación. Maestra en Gestión de Tecnologías de Información. Coordinadora General de TI de @unacar y mamá de una hermosa pequeña. ❤️️ViajarPassi @PassiDel
247 Followers 148 Following i wanna be a cowboy baby | @[email protected] | i use arch btw https://t.co/2HTgX6E2ehJ Tyler T Rex Rohrer @Remotely_TREX
614 Followers 5K Following Software. Fishing. Physics. Math. More fishing. optimist e/accMd Taifuz Zaman @Taifuzzaman1
75 Followers 911 Following I am a professional cyber security specialist (Ethical Hacker),Penetration testers and freelancer.SKII @SethKingHi
1K Followers 597 Following Senior Security Researcher @kaspersky GReAT, tweets and opinions are my own.ESET Research @ESETresearch
32K Followers 30 Following Security research and breaking news straight from ESET Research Labs.sudi @sudhanshur705
4K Followers 529 Following Remember, whatever happens... There's always a vulnerabilityBHaFSec, LLC @BHaFSecurity
234 Followers 650 Following We are the premiere Information, Network, & App Security Consulting Company, based in Michigan. Contact us today to find out how we can help: [email protected]7h3h4ckv157 @7h3h4ckv157
18K Followers 78 Following Reformed Hacker | Hall of Fame: Google, Apple, NASA, 𝕏 (Twitter) & Many more | CVE ×4 | HTB Rank: Guru | Engineering + Research | ClandestinePúblico @Publico
940K Followers 111 Following Notícias e opinião de Portugal e do Mundo | https://t.co/auO60nDBaE | https://t.co/DsTwesiOZD | @publicoazul | @ipsilononline | @publico_impar | @fugaspublico | @publicop3Cyber Security Hub ed.. @CSHubEditor
189 Followers 682 Following Editor for Cyber Security Hub https://t.co/6kA3XGGOJA 💻 For queries and pitches, contact me: info@cshub .comFarah Hawa @Farah_Hawaa
44K Followers 841 Following security analyst @fbsecurity | part-time bug hunter | content creator | she/her | views = mineRana Khalil 🇵🇸 @rana__khalil
51K Followers 869 Following AppSec Team Lead | OSCP | CEO & Instructor of @ranakhalilacadTechnical Sagar @TechnicalSagar
668 Followers 0 Following Technical sagar is a Youtube channel for Ethical Hacking and latest technical updates. This is our official Handle.Dan Ni • tldr.tech .. @tldrdan
34K Followers 656 Following I write about the most interesting stories in startups, tech & programming @tldrnewsletterEuropean Cybersecurit.. @Cybersec_ECCC
3K Followers 200 Following Official account of the EU #Cybersecurity Competence Centre (ECCC), that addresses #EU investments in cybersecurity capabilities. #HorizonEU #DigitalEUGregor @gregocoder
83K Followers 88 Following Software developer • @IBMcloud git commit -m "programmer's joke"CERT-MX @CERT_mx
311 Followers 131 FollowingCERT @certlv
5K Followers 297 Following Informācijas tehnoloģiju drošības incidentu novēršanas institūcijaCERT-UA @_CERT_UA
2K Followers 184 Following Урядова команда реагування на комп’ютерні надзвичайні події України CERT-UA (Computer Emergency Response Team of Ukraine CERT-UA )COLCERT @colCERT
11K Followers 456 Following Equipo de Respuesta a Emergencias Cibernéticas de Colombia - COLCERT 🇨🇴 @Ministerio_TICCERT-In @IndianCERT
42K Followers 28 Following Official Twitter handle of Indian Computer Emergency Response Team, Ministry of Electronics & Information Technology, Government of IndiaI was today years old when I discovered the amazing uncoder.io platform, which translates (among others) Sigma rules to the search language from a variety of platforms (in the screenshot below to the Splunk Search Processing Language. Well done, @SOC_Prime 👏
PSA: took on a bigger role at LastPass, now leading all our 7 security functions as opposed to just GRC, as VP Infosec 2023 we setup a new security org structure as we separated from Logmein, and we’re now fully independent, and continue making investments in people and tech.
“Once men turned their thinking over to machines in the hope this would set them free. But that only permitted other men with machines to enslave them” - Reverend Mother in Dune
⚠️SANS released their new Memory Forensics class (FOR532). As @SANSInstitute talk about #volatility 3 in this class and to comply with the vol3 license: ‼️SANS published all @volatility 3 related content for free! Slides:sansorg.egnyte.com/dl/hKUKAN7ZDT Labs:sansorg.egnyte.com/dl/u5Tlhm9qk9 #DFIR
VcenterKit Vcenter Comprehensive Penetration and Exploitation Toolkit github.com/W01fh4cker/Vce… #infosec #pentesting #redteam
Scan for WordPress, Joomla, Drupal and Moodle bugs via CMSmap. Clone it. Install The Exploit Database. Update the CMSmap Database. github.com/dionach/CMSmap github.com/Doctype02/expl… Run it on file mode. python3 cmsmap.py -i test.txt -t 200 -F -s -o test-resulte.txt
When investigating a suspicious process on Linux, try this: strings /proc/<PID>/environ For example, a socat command was used to spawn a reverse bindshell backdoor. Environ entry shows SSH connection data and traces to the socat comand. Some versions of netcat do similar.…
When you log into a Linux system, make it a habit to look at the processes with this command: ps -auxwf This will list out all processes in tree format. It makes it easy to spot unusual activity. For instance, this is what a PHP reverse bindshell backdoor will look like.
Open source alternative for burp suite pro? I will give it a try, hope it works as advertised! 😺 github.com/dstotijn/hetty
Experience the magic of Nuclei with our Foundation series 🪄 ⚛️ Learn how to use the CLI, run custom templates, and perform scans on multiple targets. Don't miss out on this comprehensive guide! 👇 #Nuclei101 #HackWithAutomation youtu.be/b5qMyQvL1ZA
yatas: audit AWS/GCP infrastructure for misconfiguration or potential security issues securityonline.info/yatas-audit-aw…
Awesome Anti-Forensic List of tools for countering #forensic activities: Data tampering Hiding process Encryption/Obfuscation Steganography Cleaner/Data Destruction/Wiping and more. github.com/shadawck/aweso…
lookyloo.circl.lu Fantastic tool by @circl_lu Analyze an URL behavior, redirects and loaded resources, add monitoring alerts ect ...
SysReptor: Pentest Report Creator securityonline.info/sysreptor-pent…
Nice intro for beginners to bluetooth communications reverse engineering (Domyos EL500) Credits @Palantir555 jcjc-dev.com/2023/03/19/rev… #bluetooth
Th3Inspector Best Tool For Information Gathering github.com/Moham3dRiahi/T… #OSINT #recon #infosec t.me/hackgit/8661
Phishing Email Check #infosec #CyberSecurity #CyberSecuritytips #pentesting #redteam #informationsecurity #CyberSec #networking #networksecurity #infosecurity #cyberattacks #security #linux #CyberSecurityawareness #bugbounty #bugbountytips
Nice series introducing cryptography concepts for beginners (credits @sergioprado) Part 1: sergioprado.blog/introduction-t… Part 2: sergioprado.blog/a-hands-on-app… Part 3: sergioprado.blog/asymmetric-key… #cryptography
Weekly analysis is out and what a week.. -🇨🇳 telco ops in Africa -🇨🇳 patriot ops -🇷🇺 router ops 🌐 -🇷🇺 🎣 ops opsec mistakes -🇰🇵 ops against human rights -🇰🇵 🍎 capability -🇵🇰 ops in 🇮🇳 🐧 capability -🇨🇴 ops in 🇨🇴 + the usual tradecraft and tooling.. bluepurple.binaryfirefly.com/p/bluepurple-p…