GuillaumeBen @tux_be
Security analyst, Threat Hunter, Crossfitter, Chess enthusiast. Opinions are mine. Belgium Joined March 2018-
Tweets74
-
Followers60
-
Following130
-
Likes237
Playing with computer vision, guillaumeben.xyz/Quishing-Compu…
Quak 🦆! Goodbye #Qakbot, I hope we won't see you ever again 👋. And this is how it looks like from Feodo Tracker' perspective ⬇️. All #botnet C2s are offline 🛑 feodotracker.abuse.ch/browse/qakbot/ Tango down! 💪
Quak 🦆! Goodbye #Qakbot, I hope we won't see you ever again 👋. And this is how it looks like from Feodo Tracker' perspective ⬇️. All #botnet C2s are offline 🛑 feodotracker.abuse.ch/browse/qakbot/ Tango down! 💪 https://t.co/aR9eSM7TEU
Note you may already be licensed for Azure AD Application Proxy, which is literally the use case this is for. Everything is behind an authenticated reverse proxy. No public services. Kill your VPN.
Note you may already be licensed for Azure AD Application Proxy, which is literally the use case this is for. Everything is behind an authenticated reverse proxy. No public services. Kill your VPN.
You know the homie is just loading a driver to kill the relevant processes ¯\_(ツ)_/¯
You know the homie is just loading a driver to kill the relevant processes ¯\_(ツ)_/¯
Please folks - learn about modern malware detection, encryption and zip archives before speaking about privacy invasion.
Please folks - learn about modern malware detection, encryption and zip archives before speaking about privacy invasion.
Microsoft security copilot. GPT-4 AI to fuel your security operations. Sounds promising... #microsoft #secure
🔎 IcedID’s VNC Backdoors: Dark Cat, Anubis & Keyhole A summary of #VNC #backdoor capabilities @0xThiebaut reconstructed from network traffic. 👀 Screenshots, videos and clipboard data at blog.nviso.eu/2023/03/20/ice… #Malware #PCAP #Reversing
In this article, I am exploring TeamFiltration, a Microsoft 365 enumeration, spraying and exfiltration framework, with interesting techniques and promising development (presented at Defcon'30 by @Flangvik) guillaumeben.xyz/Microsoft-365-…
Mitigating tokens theft! learn.microsoft.com/en-us/azure/ac…
1\ #DFIR: Azure Command Line Forensics 😍 Some cool host-based forensic artifacts for evidence of threat actors: > Lateral movement (on-prem to cloud) > Azure commands executed (success / error) > User accounts accessed > Reconnaissance Full blog 👇 inversecos.com/2023/03/azure-…
In nearly all of our on-premises engagements, a threat actor has taken total full control of Active Directory. If you are interested in the kind of things @MicrosoftDART finds, and how we recommend you secure Active Directory, then this blog is for you - techcommunity.microsoft.com/t5/microsoft-s…
I can confirm this QBot attack is highly active. TTPs are highly similar with the below. IOCs on hashes and filenames are not consistent and vary across cases, however powershell scripts and cmd payloads are.
I can confirm this QBot attack is highly active. TTPs are highly similar with the below. IOCs on hashes and filenames are not consistent and vary across cases, however powershell scripts and cmd payloads are.
My first blog with @MicrosoftDART! This is a post incident report, talking about some of the TTPs we saw in a recent ransomware incident. This really emphasizes the importance of doing a post ransomware IR. microsoft.com/security/blog/…
Decided to blog again. In this blog post, I'm sharing a practical guidance for IT Pros on responding after a ransomware attack. m365internals.com/2022/09/19/pra…
posts.specterops.io/on-detection-t… excellent post from @jaredcatkinson
Anybody in my network can tell me why nslookup does not log Windows Events 30xx, neither Sysmon 22, while most other tools doing DNS request are logged? What is the workaround for DNS tunneling detection based on client logs only (i insist)?
Want a great ML crash course? Check this one from Google: developers.google.com/machine-learni…
I wanted to plant a flag on this blog for a few reasons. Beyond the threat scenario it talks about there are several important takeaways. 📙techcommunity.microsoft.com/t5/microsoft-s… 👇👇👇
BerthaRamsden @d0jrF7c3f5W06Fd
64 Followers 7K Following
Isaqloii @isaqloii
0 Followers 30 Following
Jérôme Ransy @JeromeRansy
1 Followers 93 Following
gaberose @gaberose03
5 Followers 230 Following
Suyash @SuezSharma
14 Followers 210 Following
pfiatde @pfiatde
2K Followers 1K Following "Every machine is a smoke Machine if you operate it wrong enough" RedTeamer by day, sleeping at night! https://t.co/ZcTfWHeGZO
Dave Kennedy @HackingDave
224K Followers 6K Following Founder @Binary_Defense @TrustedSec Co-Owner https://t.co/HQC75WhdJh. @WeHackHealth Pod. God + Family/Hacker/CSO/USMC/Intel/Fitness. Make the world a better place.
CA$H @RobJTejas
343 Followers 3K Following Electrical Engineer turned Digital Forensicator. Thinker, tinkerer, inventor, artist, home chef, gamer, home brewer. Socially aware, spiritually awoke.
Turdie @guidovbrakel
676 Followers 2K Following Cloud Architect with focus on #Azure. Trying to focus on Azure Security (Azure Sentinel, Microsoft). AZ-500 and SC-100 certified
Roland's aching OY @RolandD_666
126 Followers 344 Following
GossipSec @gossipsec
69 Followers 1K Following
Kshitij Kumar @kshitijk_
500 Followers 476 Following You can never know enough. I do incident response investigations and forensic analysis for Microsoft DART. Opinions are my own, retweets are not endorsements
Taz Wake @tazwake
9K Followers 6K Following #DFIR #ThreatHunting | @SANSInstitute instructor | SANS Course Author | CISSP (etc) holder | https://t.co/00tACAnVLd | Rarely used account.
IT.innovation.4U @ITinnovation4U
365 Followers 2K Following Digital Transformation & IT Champions | Innovation Coaching | Mobility & Digital Workplace Leaders | Cloud Readiness & Enablement
james pond @agent_jamespond
8 Followers 297 Following
Steve @Northvein
2K Followers 2K Following Hacker in corpo #infosec | Founded DC151 & BSidesLeeds | #PurpleTeam / CTI / #TabletopTuesday
Ceramicskate0 Sec @Ceramicskate0
249 Followers 230 Following ☠Hacker stuff by unpopular hacker. Posts by me here are my own 💭. #CISSP,#CRTO,#OASP,#CEH,#sec+ | #Bugbounty #pentest #redteam #infosec
secmon @secmon2016
79 Followers 2K Following
Justin @j_schoen13
468 Followers 2K Following Detection Engineering @crowdstrike | Fmr. @redcanary | Golfer | New Dad ❤️
Cyb3rG33k @cyb3r_g33k
0 Followers 5K Following
kaiwan Ahmad @kurd_scan
57 Followers 4K Following
Thiago Beier @thiagobeier
523 Followers 2K Following Cloud Solutions Architect (SfMC) @microsoft | MVP Intune | Views & opinions are mine
Fero @fero_gh
5 Followers 566 Following
Ethical Hacker @offethhacker
2K Followers 5K Following
Shay Nahari @Red_Sec_Shay
253 Followers 634 Following VP of Red-Team services @CyberArk,opinions are my own
Wajih @Wajih72980642
8 Followers 784 Following
Michael Van Horenbeec... @vanhybrid
5K Followers 1K Following Microsoft MVP | MCSM | CEH | CCSK | Managing Partner @ The Collective | Author | https://t.co/15gau4AOO2
Jasmin Azemović @JasminAzemovic
135 Followers 169 Following CISO | University Professor | Microsoft MVP | #cybersecurity #privacy #digitalforencisc #SQLServer | Opinions mine own
Thomas Vuylsteke @tvuylsteke
255 Followers 375 Following Security Researcher @ Microsoft, Tweets are my own.
yobroda @itsyobroda
17 Followers 299 Following Trying to build things to break apart systems!! Views are personal.
James Hall @411Hall
470 Followers 342 Following Threat Hunter, general beer and boardgame geek. Creator of the DuckToolkit
Alexandre Voisin @HuMainMind
14 Followers 481 Following Troubadour, fan de motoculture. Biology and cybersecurity
`Ivan @Ivanlef0u
11K Followers 4K Following
Florian Schlumberger @BenderBieger
510 Followers 2K Following IT Engineer #ActiveDirectory #AzureAD #PKI #PowerShell Simracer (@iRacing @TeamFBM).
No_Ninja @___maverick___0
118 Followers 1K Following Research | Bugs | Exploits | Shells | Threats | Intel. Thoughts, if any, are my own.
JORGE @JORGE19791196
1K Followers 3K Following
clandest1n @clandest1n
433 Followers 364 Following
Justin Elze @HackingLZ
65K Followers 5K Following CTO @TrustedSec | Former Optiv/SecureWorks/Accuvant Labs/Redspin | Race cars
Melvin langvik @Flangvik
11K Followers 516 Following Red Team @TrustedSec , terrible creator of InfoSec content 📹Opinions are my own and not the views of my employer.
Nicholas DiCola @MasterSecJedi
1K Followers 450 Following VP @ZeroNetworks | Former @Microsoft | Retired @USMC. Author, Gamer, Classic Car Enthusiast and all around Techie / Security Human.
Binary Defense @Binary_Defense
13K Followers 493 Following We're determined to make the world a safer place through our-industry recognized managed security services. Founded by @HackingDave|Sister company @TrustedSec
Tornado @0xtornado
3K Followers 542 Following Incident Responder & @TheDFIRReport Member • Hunting and dissecting smart creatures called malware, doing forensics between whiles…
Maxime Thiebaut @0xThiebaut
714 Followers 147 Following 308 Permanent Redirect Location: https://t.co/xKLuDM5iDl 🇧🇪🕊🇺🇦
Dr. Maik Ro ➡️�... @maikroservice
19K Followers 712 Following ☠️ inactive account ☠️ - Training the next generation of Hackers over at bsky / linkedin / youtube 🏴☠️💜
Jens Stoltenberg @jensstoltenberg
832K Followers 29K Following Norway’s Minister of Finance. Served as NATO Secretary General and Prime Minister of Norway. Dedicated to maintaining peace and security.
Tib3rius @0xTib3rius
69K Followers 599 Following Cybersecurity Content Creator | UwU-Anointed Wapp King | DEF CON Gameshow Host | Ex-Brit | https://t.co/04RRExvxXj (he/him) 🇺🇸 A deeply unserious person.
Andrew Thompson @ImposeCost
39K Followers 1K Following Head of Global Signals Operations @Google Threat Intelligence Group via @Mandiant acquisition. Posts are attributable to me—not my employer. Former @USMC.
Cisco Talos Intellige... @TalosSecurity
48K Followers 164 Following The Official X account of the Cisco Talos Intelligence Group. Support requests: https://t.co/LGrHyYbolX
John Lambert @JohnLaTwC
43K Followers 802 Following Corporate Vice President, Security Fellow, Microsoft Security Research, johnla(AT)https://t.co/3dGtq71Nby
TheZDIBugs @TheZDIBugs
5K Followers 2 Following Checks for high severity, 0day, or Pwn2Own related advisories published by @thezdi
ExecuteMalware @executemalware
27K Followers 185 Following #malware hunter & analyst. Opinions are my own.
PRODAFT @PRODAFT
9K Followers 11 Following Proactive Defense Against Future Threats | Pioneering #CyberSec and #ThreatIntelligence in Europe & MENA since ’12. CTI Platform: #USTA Risk Intel: #BLINDSPOT
3xp0rt @3xp0rtblog
15K Followers 173 Following Malware and cybercrime | Cyber Threat Intelligence Analyst at @PRODAFT
Gynvael Coldwind @gynvael
38K Followers 1K Following security researcher/programmer/director @ HexArcana Cybersecurity GmbH ⁂ @pagedout_zine ⁂ @DragonSectorCTF ⁂ https://t.co/ShG2c5As1K ⁂ ex-Google ⁂ he/him
Cryptolaemus @Cryptolaemus1
20K Followers 207 Following Where are mealybugs now!?! We is hungry and no one wants to play anymore. Where everyone at?
TROOPERS Conference @WEareTROOPERS
10K Followers 499 Following We are TROOPERS - IT-Security Conference & Trainings https://t.co/gO1lSzFuns Also at the infosec exchange @WEareTROOPERS
Deutsche Telekom CERT @DTCERT
5K Followers 44 Following Technical tweets for technical folks by Deutsche Telekom CERT, CTI, and DFIR. #dfir #cyber #cert #cti #TelekomSecurity
FalconForce Official @falconforceteam
3K Followers 337 Following Building a resilient digital society through highly specialised digital security consulting.
NVISO Labs @NVISO_Labs
4K Followers 373 Following NVISO Labs is the research arm of @NVISOSecurity, focused on infosec research. This is where our lab rats share the results! 🐀
RussianPanda 🐼 �... @RussianPanda9xx
16K Followers 533 Following Меня ищет МВД 🚔 | Threat Hunter @HuntressLabs | TRACLabs https://t.co/QNvr2yUuJM | Malware Addict | DFIR
Quentin Kaiser @qkaiser
2K Followers 824 Following Offensive security / vulnerability finder. security researcher @onekey_sec / @konkretesec founder / @ecoswtf initiator
James Hall @411Hall
470 Followers 342 Following Threat Hunter, general beer and boardgame geek. Creator of the DuckToolkit
Thomas Vuylsteke @tvuylsteke
255 Followers 375 Following Security Researcher @ Microsoft, Tweets are my own.
Jasmin Azemović @JasminAzemovic
135 Followers 169 Following CISO | University Professor | Microsoft MVP | #cybersecurity #privacy #digitalforencisc #SQLServer | Opinions mine own
Michael Van Horenbeec... @vanhybrid
5K Followers 1K Following Microsoft MVP | MCSM | CEH | CCSK | Managing Partner @ The Collective | Author | https://t.co/15gau4AOO2
nick @3dRailForensics
2K Followers 606 Following By Stimson's postulate, I'm no gentleman. ⩜ 🐇 https://t.co/J8RfUt2yuq
Kevin Mitnick @kevinmitnick
275K Followers 3K Following Chief Hacking Officer @knowbe4, Security Consultant, Public Speaker, & Author Whistling ICBM launch codes since 1988 - account managed by Kimberley Mitnick
lil c @seclilc
17K Followers 871 Following infosec stuff, learning stuff, bit of insanity @JustHackingHQ
InfoSec CFPs @infosec_cfp
3K Followers 3 Following Sharing CFP and event data about #infosec conferences, so you don't have to miss any. Maintained by @mboelen
Nicholas DiCola @MasterSecJedi
1K Followers 450 Following VP @ZeroNetworks | Former @Microsoft | Retired @USMC. Author, Gamer, Classic Car Enthusiast and all around Techie / Security Human.
christian_taillon @christian_tail
558 Followers 252 Following Cyber nerd who enjoys hunting for evil and helping others fight black hats. Can close Vim without consulting Google. Probably sipping ☕. Opinions are my own.
Blue Team Thomas @TheEis4Extra
4K Followers 1K Following Detection Engineer | Cybersecurity Researcher | Multifaceted Nerd | Excessively Black | HipHop & R&B | Gamer | Runner | Occasional Podcaster
queen basic ⊛ @onfvp
5K Followers 911 Following How many buzzwords can I fit here? 🐱 Cat Lady • #DFIR-er • Thrunter • Candy Aficionado • Gamer • Coffee Addict • Reader
KringleCon @KringleCon
6K Followers 59 Following The world's most fun and festive hacking challenge! 🎁 #HolidayHack by @CounterHackSec + @SANSInstitute
Dominic Chell 👻 @domchell
18K Followers 541 Following Just your friendly neighbourhood red teamer @MDSecLabs | Creator of /r/redteamsec | https://t.co/3k3EBAZqGd | https://t.co/KwO2OwDOkl
Kshitij Kumar @kshitijk_
500 Followers 476 Following You can never know enough. I do incident response investigations and forensic analysis for Microsoft DART. Opinions are my own, retweets are not endorsements
LiveOverflow 🔴 @LiveOverflow
156K Followers 1K Following wannabe hacker... he/him 🌱 grow your hacking skills @hextreeio
The DFIR Report @TheDFIRReport
62K Followers 0 Following Real Intrusions by Real Attackers, the Truth Behind the Intrusion. Services: https://t.co/XW613EKt2w
GuidedHacking @GuidedHacking
53K Followers 393 Following Reverse Engineering & Game Hacking Courses @ https://t.co/Dl5ED4o7YS
Roland's aching OY @RolandD_666
126 Followers 344 Following
Melvin langvik @Flangvik
11K Followers 516 Following Red Team @TrustedSec , terrible creator of InfoSec content 📹Opinions are my own and not the views of my employer.
Leah Lease @LeahLease
3K Followers 488 Following Former Career Microsoftie: Microsoft Threat Intelligence Center #MSTIC R & D, Cloud Security Engineering, #AzureSentinel #AzureSecurityCenter #MDATP
Jonny Johnson @JonnyJohnson_
8K Followers 424 Following Principal Windows Security Researcher @HuntressLabs | Windows Internals & Telemetry ResearchTrends for United States
You might like
