CyberPatriot @TeamOffSec
Joined December 2024-
Tweets33
-
Followers2
-
Following84
-
Likes14
@juanandres_gs From a student: Would you say this dilution effect has impacted the paywalled reports as well, or have they gotten better? Has the "relentless mess of daily operational tasks" really increased that much? Are there silver linings to these shifts, or is it all unfavorable?
@TheEnergyStory Very insightful as somebody that is new to the field. Thank you!
@jamieantisocial Wow this seems like a really advanced report, but that's also due to me not being super experienced. Curious where this lands detail-wise on reports you are usually looking through and if you have a process for reading these (or do you simply read/ skim top-to-bottom)?
@Web3Lenny @mattjay Thank you for the info! Modern-age Identity Crisis 😅
@mattjay I'm guessing it's also from the OAuth token but I'm not sure. Trying to learn the details haha
@mattjay So, if I'm understanding it correctly, ShinyHunters were able to compromise an OAuth token using the LummaStealer malware, which then allowed them to pivot to Vercel's environment because of the Allow All permissions set in place? How did they pivot to accessing the EVs?
@cyb3rops Why is it that only sensitive environment variables are encrypted?
@fr0gger_ Keep up the amazing work and best of luck with the transition process :~))
@soolidsnakee @vxunderground @HackingLZ @virusbtn Makes sense :~) Will keep breaking it down until I finally understand it 😆Appreciate the great work you guys are doing! Keep it up!
@fr0gger_ When it comes to the Pyramid of Pain, where do IoPCs land? How are these prompts detected in a way where they aren't like hashes that can be easily modified? I'm assuming this has to do with the semantic detection in the NOVA rule framework, but would love an explanation on this!
@magicswordio I get why vendors would be incentivized to keep the "detection cycle" going, but why would they willingly do that for their own company when they could implement your solutions and reduce the flow of alerts? Maybe I'm missing something here, but my point is the problem is deeper
@magicswordio I like the takes in this article, but want to push back against something. The claim that companies are neglecting prevention because "detection engineering is a business model" makes it sound like the security teams are purposefully leaving themselves open to attacks. Thoughts?
@_JohnHammond Crazy how the executable was just sitting there on the host device since 2024... Wonder when the domain became expired.
@fr0gger_ Curious if you've taken a look at this technical report yet. It reminded me of your work related to IoPC since there were logs of the actor's prompts in the report. Crazy real world impact as well!
Chat, I've changed my mind. We have some problems in the AI department. It turns out someone compromised the Mexican government to an unbelievable extent using nothing but Claude and ChatGPT. I'll link the full paper in the subsequent post. However, here is the highlights of how
@M_haggis In your opinion, how effective are these rules at actually detecting threats? I've recently gotten into detection engineering and was testing out Sigma rules against the acme4 dataset , but it seemed like the rules were completely overlooking the malicious traffic
@jamieantisocial Exactly! Same goes for the over-exposed scope of the macOS sandbox
@vxunderground That feeling of getting back into the swing of things is so satisfying! Hope you enjoy learning some new stuff during your cooldown :p
@Antonlovesdnb Sounds good. Excited to take a look at the course and continue following your work!
💻 Sherrod @sherrod_im
37K Followers 7K Following Difficult mystery girl connected to the divine forces of the universe.
Stephen Sims @Steph3nSims
26K Followers 861 Following Perpetual Student | SANS Fellow | Musician | Braggart Hater | Gray Hat Hacking | VR | 🏂 | deadcode | https://t.co/4neOSsnCQ8
Off By One Security @offby1security
2K Followers 2 Following New streams every Friday! All channel proceeds go back to the community! Check out https://t.co/um6KVfwMFJ for our AI-powered offensive security testing platform!
J. A. Guerrero-Saade @juanandres_gs
16K Followers 430 Following VP Intelligence & Sr Technical Fellow (AI Research) @ SentinelOne | Distinguished Fellow @SAISHopkins Alperovitch | https://t.co/9Mj3l5xmcW | Three Buddy Problem
SANS DFIR @sansforensics
111K Followers 104 Following The world's leading Digital Forensics and Incident Response provider. This feed updates you on latest DFIR news, events, and training.
CrowdStrike @CrowdStrike
111K Followers 793 Following The first cloud-native platform that protects endpoints and cloud workloads, identity & data. #WeStopBreaches. Free trial: https://t.co/msBcUPjFKo
1aN0rmus @TekDefense
4K Followers 1K Following CTO at @permisosecurity Alum: @Mandiant, https://t.co/kqlvYwe86k, USMC
Roberto Rodriguez �... @Cyb3rWard0g
26K Followers 678 Following AI Security Researcher @nvidia | Prev: @Microsoft @awscloud | Founder of the @OTR_Community
Dirk-jan @_dirkjan
30K Followers 205 Following Hacker at @OutsiderSec. Researches AD and Azure (AD) security. Likes to play around with Python and write tools that make work easier.
Kostas @Kostastsale
20K Followers 383 Following I like building things that solve real problems, working across cybersecurity, product, and research | 🇬🇷🇨🇦
The DFIR Report @TheDFIRReport
67K Followers 0 Following Real Intrusions by Real Attackers, the Truth Behind the Intrusion
billy leonard @billyleonard
5K Followers 706 Following pogue life. sec @ A\, fmr @Google TAG, Global Head of Analysis of State Sponsored Hacking And Threats.
Kye Gomez (swarms) @KyeGomezB
34K Followers 1K Following 22 y/o Founder @swarms_corp - Building The Agent Economy. Researching Multi-Agent Collaboration, Multi-Modal Models, Mamba/SSM models, reasoning, and more
Unit 42 @Unit42_Intel
69K Followers 81 Following The latest research and news from Unit 42, the Palo Alto Networks (@paloaltontwks) Threat Intelligence and Security Consulting Team covering incident response.
Lawrence Livermore Na... @Livermore_Lab
67K Followers 997 Following U.S. @ENERGY and @NNSAnews laboratory. We use science and technology to make the world a safer place. Verification: https://t.co/29pFxbpHmQ
Red Canary, a Zscaler... @redcanary
30K Followers 1K Following 24/7/365 threat detection and response across your cloud, identity, endpoints and everything in-between. We got you: https://t.co/3tlcMwxXMa
Nextron Systems @nextronsystems
9K Followers 86 Following Managed Compromise Assessments #YARA #IOCs #DFIR #APT #Sigma - the home of @thor_scanner, ASGARD and the Aurora Agent
Mehmet Ergene @Cyb3rMonk
14K Followers 450 Following Learn Threat Hunting, Detection Engineering, DFIR, and KQL https://t.co/uAlYlXIXot @BluRavenSec Microsoft Security MVP #ThreatHunting #DataScience
SolidSnake @soolidsnakee
1K Followers 349 Following Senior Malware researcher at @Elastic. Private account. All opinions expressed here are mine only (not of my employer etc).
vx-underground @vxunderground
438K Followers 358 Following The largest collection of malware source code, samples, and papers on the internet. Password: infected
The Haag™ @M_haggis
10K Followers 2K Following ⚔️ Prevention Engineering at MagicSword | Co-Host of Atomics on a Friday | LOLDrivers & Atomic Red Team Maintainer
Jacob Gajek @jgajek
533 Followers 728 Following Principal Security Researcher @esentire. AI | EDR | DFIR. AI-enfeebled and economically irrelevant. Tweets are my own.
Thomas Roccia 🤘 @fr0gger_
35K Followers 2K Following AI Security x Threat Intel · Threat Researcher · Creator of #Unprotect & #NOVA · Malware Warlock · Python 🧡 · Prev @Microsoft @McAfee_Labs
MyDFIR @MyDFIR
4K Followers 151 Following I run a community showing you how to build practical hands-on skills to become a Cybersecurity SOC analyst. 👇
John Lambert @JohnLaTwC
42K Followers 819 Following Corporate Vice President, Security Fellow, Microsoft Security Research, johnla(AT)https://t.co/3dGtq71Nby
💻 Sherrod @sherrod_im
37K Followers 7K Following Difficult mystery girl connected to the divine forces of the universe.
Florian Roth ⚡️ @cyb3rops
221K Followers 3K Following Head of Research @nextronsystems #DFIR #YARA #Sigma | detection engineer | creator of @thor_scanner, Aurora, Sigma, LOKI, YARA-Forge | always busy ⌚️🐇 | vi/vim
Fox_threatintel @banthisguy9349
16K Followers 286 Following Just a person who is against cyber crime and dictators like Putin
Threat Hunting Labs @ThruntingLabs
2K Followers 1 Following Train on raw telemetry from actual breaches. Investigate malware and reconstruct the kill chain from process creation to exfiltration and beyond.
Rami McCarthy @ramimacisabird
5K Followers 905 Following security, for the internet, at @wiz_io! opinionated about security. 🇺🇸 in 🇸🇪 (he/him)
Katie Paxton-Fear @InsiderPhD
97K Followers 2K Following Dr, apparently. Security Adovcate @semgrep & Hacker. #BugBounty hunter & #infosec YouTuber. APIs & Interlinked OffSec, PhD in AI+Sec @hacknotcrime. she/her
Anton @Antonlovesdnb
6K Followers 4K Following Blue Team stuff | Trying to be a decent human being | @munkschool Grad | Hunt & Response @HuntressLabs
Berkeley AI Research @berkeley_ai
273K Followers 458 Following We're graduate students, postdocs, faculty and scientists at the cutting edge of artificial intelligence research.
DirectoryRanger @DirectoryRanger
37K Followers 102 Following This account assembles and disseminates information related to Active Directory and Windows security.
MalwareHunterTeam @malwrhunterteam
254K Followers 37 Following Official MHT Twitter account. Check out ID Ransomware (created by @demonslay335). More photos & gifs, less malware.
Yassine Aboukir 🐐 @Yassineaboukir
33K Followers 411 Following HackerOne Top 40, Elite, Pentest Lead, Ambassador, x2 MVH Title, $1 million bounties and ex- Hacker Advisory Board • Digital Nomad/Hybrid Athlete/Surfer
Steve YARA Synapse Mi... @stvemillertime
18K Followers 1K Following AI threat intelligence @google writing & sharing on adversary tradecraft, malware, threat detection, AI-nexus intel and all things #yara
LetsDefend @LetsDefendIO
140K Followers 1 Following LetsDefend, now part of Hack The Box. Read more: https://t.co/jxMnGZ4Yne
International Grace S... @__nolang
2K Followers 480 Following Security Engineer, Orbiting Google Sunnyvale Office. Mission control @kawaiiconnz. @PurpleConNZ choreographer. she/her.
SimpleX Chat @SimpleXChat
20K Followers 527 Following Private, secure and decentralized messaging. The first network where you own your contacts and groups. Get the open-source app: https://t.co/7cmX6RYaiq
Trail of Bits @trailofbits
38K Followers 260 Following We help secure the world’s most targeted organizations and products. We combine security research with an attacker mentality to reduce risk and fortify code.
XSS Payloads @XssPayloads
55K Followers 0 Following
Ryan "Chaps" Chapman @rj_chap
8K Followers 3K Following Threat Hunter. DFIR & Malware Analyst. @sansforensics Author (FOR528) & Instructor (FOR610). Husband & father. Retro gamer too! Comments = own.
publiclyDisclosed @disclosedh1
68K Followers 2 Following This is an unofficial HackerOne public disclosure watcher who keeps you up to date about the recently disclosed bugs. By @NOBBD
Hack The Box @hackthebox_eu
246K Followers 228 Following Cyber Mastery: Community Inspired. Enterprise Trusted.Trends for United States
You might like
