David Cowen @HECFBlog
Co-Author SANS FOR509, Vice President @ https://t.co/whEvYHKz6R wrote some books a long time ago, fights fires in the cloud. Views expressed are my own. hecfblog.com Dallas, Texas Joined January 2011-
Tweets7K
-
Followers14K
-
Following927
-
Likes2K
This years National CCDC Awards Ceremony, including my red team debrief, are streaming live today youtube.com/live/iYqfoGqIv…
0
0
1
599
0
It's Sunday! This week let's provide a lower barrier of entry challenge all around testing web browser password extractors and the artifacts they leave behind! Win a $100 Amazon Gift Card! #dfir #sundayfunday hecfblog.com/2025/04/daily-…
If you ever needed or wanted to have continuous egress testing of your secured environments with the ability to be easily notified and that uses attacker techniques this is the new tool for you!
If you ever needed or wanted to have continuous egress testing of your secured environments with the ability to be easily notified and that uses attacker techniques this is the new tool for you!
David Cowen retweeted
I didn't know that I needed to be able to turn random album covers into mupptes, but here we are.
It's Sunday! This week is a WSL/Docker themed challenge great for beginners! #dfir hecfblog.com/2025/04/daily-…
Forensic Lunch Test Kitchen 4/4/25 - Replit AI Coding! x.com/i/broadcasts/1…
Hey #dfir win $100 for doing some cloud log delay testing in this weeks Sunday Funday challenge! hecfblog.com/2025/03/daily-…
Forensc Lunch Test Kitchen 3/14/25 x.com/i/broadcasts/1…
Forensic Lunch Test Kitchen 3/13/25 x.com/i/broadcasts/1…
Forensic Lunch Test Kitchen 3/11/25 x.com/i/broadcasts/1…
David Cowen retweeted
Forensic Lunch Test Kitchen 3/7/25 x.com/i/broadcasts/1…
You still have time to submit to this week's Sunday Funday challenge! hecfblog.com/2025/03/daily-…
Forensic Lunch Test Kitchen 3/6/25 x.com/i/broadcasts/1…
Forensic Lunch Test Kitchen 3/4/25 x.com/i/broadcasts/1…
It's another Sunday Funday! Try your talents at solving this week's Microsoft 365 UAL challenge. hecfblog.com/2025/03/daily-…
David Cowen retweeted
New blog post: Gotta Captcha Them All! Leveraging yara rules to find FakeCaptcha URLs and other assorted badness sketchymoose.blogspot.com/2025/03/gotta-… #yara #virustotal #dfir
Forensic Lunch Test Kicthen 2/28/25 x.com/i/broadcasts/1…
Forensic Lunch Test Kitchen 2/27/25 x.com/i/broadcasts/1…
Forensic Lunch Test Kitchen 2/26/25 x.com/i/broadcasts/1…
Jake Williams @MalwareJake
142K Followers 2K Following Breaker of software | VP R&D @hunterstrategy | CTI/DFIR | @ians_security faculty | Bookings: jake at malwarejake dot com | GSE #150 | He/him
SANS DFIR @sansforensics
109K Followers 98 Following The world's leading Digital Forensics and Incident Response provider. This feed updates you on latest DFIR news, events, and training.
Ali Hadi | B!n@ry @binaryz0ne
33K Followers 565 Following DFIR and Adversary Simulation | DFIR @ ProtonMail
4n6lady @4n6lady
62K Followers 669 Following #DFIR & #BlueTeam | IR & Threat Detection | #OSINT enthusiast | waiting for HL3 | AWS CIRT - my views are my own
Chris Sanders 🔎 �... @chrissanders88
34K Followers 489 Following Ed.D. | Founder @networkdefense @RuralTechFund | Former @Mandiant, DoD | Author: Intrusion Detection Honeypots, Practical Packet Analysis, Applied NSM
Heather Mahalik Barnh... @HeatherMahalik
23K Followers 1K Following DFIR @cellebrite, Faculty Fellow & author @sansforensics #FOR585 #FOR500, wife, mama, researcher, USAF. Trust but validate. Thoughts are mine.
Stephan Berger @malmoeb
28K Followers 1K Following Head of Investigations @InfoGuardAG https://t.co/A5lnFAu7eX
Chad Tilbury @chadtilbury
22K Followers 600 Following Digital forensics and incident response. Ex-AFOSI, Mandiant, and CrowdStrike. SANS Institute Fellow and co-author of #FOR500 and #FOR508 courses.
Katie Nickels @likethecoins
55K Followers 3K Following Director of Intel at @redcanary. SANS Certified Instructor for FOR578: CTI. Senior Fellow at @CyberStatecraft. She/her. Mastodon: @[email protected]
strandjs - strandjs@b... @strandjs
45K Followers 2K Following I will light the way by the bridges I burn. Retired Senior SANS Instructor IANS Faculty Black Hills Information Security Active Countermeasures
Eric Capuano - Bsky: ... @eric_capuano
11K Followers 3K Following Co-Founder @recon_infosec | SANS DFIR Instructor | IANS Faculty | https://t.co/yUXCSu2Yso | ⬡ ❤ @shortxstack
Nicole Beckwith @NicoleBeckwith
42K Followers 7K Following Director, Security Operations @kroger 🍓 Intel, Hunting, IR, Detection Engineering, Insider Risk, Fraud & Forensics 💻 Fmr LE & DFIR for OH & Secret Service TF.
Phill Moore @phillmoore
9K Followers 3K Following This Week in 4n6 // ThinkDFIR // SANS // CyberCX (DFIR) https://t.co/vLyL2sxTuy I might not know much, but I do know how to Google Tweets are mine
Kevin 🤖🕵️🍺 @KevinPagano3
3K Followers 570 Following 🕵🏼♂️ @stark4n6 🎴 Shiny cardboard collector 🍺 Resident beer drinker
edskoudis @edskoudis
62K Followers 306 Following President SANS Technology Institute College. SANS Fellow. CEO @CounterHackSec. @RSAConference Keynoter. IANS Faculty. BoD @manasquanbank & https://t.co/WD7vkoH5lH.
Moose @LitMoose
38K Followers 5K Following DFIR | Violinist | Former medical/vet tech | I work for everyone and no one. Infosec retellings obfuscated. Salty and tired. Also Litmoose on BlueSky
Tim Medin @timmedin.b... @TimMedin
18K Followers 593 Following Kerberoast Guy • @RedSiege CEO • IANS Faculty • Former SANS SEC560 Author, Senior Instructor • Packers Owner #GoPackGo • Work Req: https://t.co/ALJldLMDfZ
Mike Felch (Stay Read... @ustayready
16K Followers 2K Following Targeted Ops Red Team @ TrustedSec | Hacking since Renegade BBS backdoors | Prior CrowdStrike/BHIS | In Christ's grip | I speak for myself only | K1HAQ
Ryan "Chaps" Chapman @rj_chap
8K Followers 3K Following DFIR & malware analyst. @sansforensics FOR528 Author & FOR610 Instructor. @CactusCon crew. Husband & father. Comments = own.
auraFunk @5iU7nYVM5y65mao
0 Followers 31 Following
Alzrajors @Alzrajors75118
14 Followers 1K Following
Strickglück @V1YiERD356MnsaN
6 Followers 304 Following
YangSoon @RavelonjatovoG
4 Followers 113 Following
Vawdkoo @Vawdkoo1146
28 Followers 1K Following
Blue lagoon @blue_lagoon9
8 Followers 173 Following
mmjv @m_m_j_v
1 Followers 61 Following
Scotty Spinka @SpinkaScot87175
26 Followers 2K Following
Uliaufe @Uliaufe82248
38 Followers 2K Following
chimchm @chimchm4
33 Followers 309 Following
Sulaiman Alhasawi @alhasawi
3K Followers 1K Following Founder of ICSrank and ICS Arabia Podcast 🎙️ | ICS/OT Cybersecurity @icsrank @ZeroNTek . https://t.co/HXrqjnK1Sp
Oscar @illmatic801
40 Followers 542 Following
BlackMamba @b1ack__mamba
3 Followers 186 Following
Pablo Peña Cardeñas @papeca9
7 Followers 137 Following
#Cyberwar @cyberwar_geek
5K Followers 7K Following "Cry havoc and unleash the nerds of war" IT professional by accident, geek by nature. Student of conflict.
James Ibrahim @JamesIb54140322
54 Followers 3K Following
souhaib @souhaib17273415
4 Followers 448 Following
3HUE @3HUE6
1 Followers 154 Following
Saksham Sharma @ogh0n3yB4dg3r
3 Followers 1K Following
Aurelia Sawayn @sawayn93381
50 Followers 3K Following
Vincetius Vulpes @VinceVulpes
194 Followers 2K Following Cybersec Pro, Coder of Fortune, Knave of all Trades, Artist of Human Motion. Opinions expressed are my own and do not represent the views of my employer.
Marc B. @0d
25 Followers 100 Following Husband, father, and longtime incident responder. Occasional tweets are my own.
ڈرٹی ہیری @Spy5430
161 Followers 62 Following
Sami Alawi @SamiAlawi
40 Followers 84 Following
threatYeti by alphaMo... @threatyeti
85 Followers 92 Following threatYeti is a domain/IP research platform from https://t.co/33uEZWna3F that helps researchers investigate potentially malicious sites faster and more confidently.
Anne Jolly @AnneJolly667606
873 Followers 5K Following
Ema Jenson @NurFitriMuthma1
201 Followers 4K Following Love to travel and explore different countries/like to share experiences with successful people in different fields/like to invest in different projects in diff
marco @marco97392446
4 Followers 235 Following
Teejqorr @Teejqorr3858
29 Followers 902 Following
Nicolas Octaviani @bassfaerie
16 Followers 295 Following
Naunuesmea @NaunuesmealEgG
73 Followers 2K Following
Leela Krishna Vippart... @vLK_OnAir
1 Followers 42 Following
Jonathan D. Abolins @jabolins
3K Followers 5K Following Info security, OSINT, languages geek. Sciences background. Studies networked world. RTs NOT=endorsements. Now at https://t.co/gzcGAm5OLs
Eddie coyle @Eddiecoyle21
5 Followers 69 Following
Qanon @qanonfree
4 Followers 4K Following
Dr. Tim Nedyalkov @genaisecurity
176 Followers 470 Following Author, "Value-Driven Cybersecurity: 11 Principles for Better Business Outcomes" https://t.co/pGh6dfwpcQ. Keynote Speaker. CEO. Senior Advisor. AI Security
rydalch @rydalch
84 Followers 85 Following Infosec / cybersecurity risk management (profile pic credit: @StartVisiting)
pires jah @pjluca33
0 Followers 67 Following
Sloughl @SloughlZfn8
50 Followers 2K Following
Balasubramaniam Natar... @bnatarajan51
19 Followers 179 Following
Florian Roth ⚡️ @cyb3rops
206K Followers 3K Following Head of Research @nextronsystems #DFIR #YARA #Sigma | detection engineer | creator of @thor_scanner, Aurora, Sigma, LOKI, YARA-Forge | always busy ⌚️🐇 | vi/vim
Jake Williams @MalwareJake
142K Followers 2K Following Breaker of software | VP R&D @hunterstrategy | CTI/DFIR | @ians_security faculty | Bookings: jake at malwarejake dot com | GSE #150 | He/him
SANS DFIR @sansforensics
109K Followers 98 Following The world's leading Digital Forensics and Incident Response provider. This feed updates you on latest DFIR news, events, and training.
Ali Hadi | B!n@ry @binaryz0ne
33K Followers 565 Following DFIR and Adversary Simulation | DFIR @ ProtonMail
Mick Douglas 🇺🇦... @bettersafetynet
30K Followers 568 Following Consultant for InfoSec Innovations | @SANSInstitute Principal Instructor | @IANS_Security Faculty | I like information security. How about you?
Chris Sanders 🔎 �... @chrissanders88
34K Followers 489 Following Ed.D. | Founder @networkdefense @RuralTechFund | Former @Mandiant, DoD | Author: Intrusion Detection Honeypots, Practical Packet Analysis, Applied NSM
Heather Mahalik Barnh... @HeatherMahalik
23K Followers 1K Following DFIR @cellebrite, Faculty Fellow & author @sansforensics #FOR585 #FOR500, wife, mama, researcher, USAF. Trust but validate. Thoughts are mine.
Chad Tilbury @chadtilbury
22K Followers 600 Following Digital forensics and incident response. Ex-AFOSI, Mandiant, and CrowdStrike. SANS Institute Fellow and co-author of #FOR500 and #FOR508 courses.
Katie Nickels @likethecoins
55K Followers 3K Following Director of Intel at @redcanary. SANS Certified Instructor for FOR578: CTI. Senior Fellow at @CyberStatecraft. She/her. Mastodon: @[email protected]
strandjs - strandjs@b... @strandjs
45K Followers 2K Following I will light the way by the bridges I burn. Retired Senior SANS Instructor IANS Faculty Black Hills Information Security Active Countermeasures
Eric Capuano - Bsky: ... @eric_capuano
11K Followers 3K Following Co-Founder @recon_infosec | SANS DFIR Instructor | IANS Faculty | https://t.co/yUXCSu2Yso | ⬡ ❤ @shortxstack
Nicole Beckwith @NicoleBeckwith
42K Followers 7K Following Director, Security Operations @kroger 🍓 Intel, Hunting, IR, Detection Engineering, Insider Risk, Fraud & Forensics 💻 Fmr LE & DFIR for OH & Secret Service TF.
Phill Moore @phillmoore
9K Followers 3K Following This Week in 4n6 // ThinkDFIR // SANS // CyberCX (DFIR) https://t.co/vLyL2sxTuy I might not know much, but I do know how to Google Tweets are mine
Kevin 🤖🕵️🍺 @KevinPagano3
3K Followers 570 Following 🕵🏼♂️ @stark4n6 🎴 Shiny cardboard collector 🍺 Resident beer drinker
edskoudis @edskoudis
62K Followers 306 Following President SANS Technology Institute College. SANS Fellow. CEO @CounterHackSec. @RSAConference Keynoter. IANS Faculty. BoD @manasquanbank & https://t.co/WD7vkoH5lH.
Moose @LitMoose
38K Followers 5K Following DFIR | Violinist | Former medical/vet tech | I work for everyone and no one. Infosec retellings obfuscated. Salty and tired. Also Litmoose on BlueSky
SANS Institute @SANSInstitute
191K Followers 417 Following SANS is the most trusted and by far the largest source for information & cyber security training, certification and research in the world.
Tim Medin @timmedin.b... @TimMedin
18K Followers 593 Following Kerberoast Guy • @RedSiege CEO • IANS Faculty • Former SANS SEC560 Author, Senior Instructor • Packers Owner #GoPackGo • Work Req: https://t.co/ALJldLMDfZ
Ryan "Chaps" Chapman @rj_chap
8K Followers 3K Following DFIR & malware analyst. @sansforensics FOR528 Author & FOR610 Instructor. @CactusCon crew. Husband & father. Comments = own.
DFIR Training @DFIRTraining
17K Followers 495 Following The official DFIR Training account and most complete #DFIR online resource. Managed by @Brett_Shavers.
Brian Maloney @bmmaloney97
2K Followers 611 Following "Distrust and caution are the parents of security." - Benjamin Franklin
Michael Burry Stock T... @burrytracker
397K Followers 124 Following Tracking hedge funds and Burry’s stocks. Powered by @joinautopilot_ join Autopilot to invest alongside Burry's portfolio
Edith Santos @santose462
6 Followers 54 Following
Altoid0 @Altoid0day
74 Followers 101 Following Security Engineering @ something blue | Professional Bottleneck dev | Cyber competition enjoyer
Andrew Cook @whoisAndrewCook
146 Followers 158 Following Finding and stopping threats one day at a time, @Recon_InfoSec SecOps. Threat Hunting. Incident Response.
Turbinia @TurbiniaProj
61 Followers 4 Following Automation and Scaling of Digital Forensics Tools. Turbinia is an open-source framework for deploying, managing, and running distributed forensic workloads.
Kevin Holvoet @digihash
2K Followers 858 Following Cyber Threat Research Lead @CCB_Belgium/@CCBalert | #FOR578: #CTI @SANSInstitute instructor | @CuratedIntel | loves to try new things: food, beer whisky, etc.
Wendy’s @Wendys
3.7M Followers 456 Following We like our tweets the way we like our fries: hot, crispy, and better than anyone expects from a fast food restaurant.
Joshua Wright @joswr1ght
27K Followers 562 Following Hacker for @counterhacksec and SANS Faculty Fellow. Pirata informático. Photography at https://t.co/Qbh3jsScLb. He/him.
Korstiaan @KorstiaanS
469 Followers 326 Following Founder of Invictus Incident Response @InvictusIR | DFIR enthousiast | https://t.co/qgFI02Nro1
Invictus Incident Res... @InvictusIR
2K Followers 30 Following Helping organizations respond to cyber incidents in the cloud | 🆘 24/7 support https://t.co/zfF62gimvm | 📚 Academy https://t.co/GH0u8tmjXJ
John Lambert @JohnLaTwC
43K Followers 800 Following Corporate Vice President, Security Fellow, Microsoft Security Research, johnla(AT)https://t.co/3dGtq71Nby
Vitali Kremez @VK_Intel
44K Followers 86 Following Ethical Hacker | Reverse Engineer | CEO @AdvIntel | Malware Course Author "Zero2Hero" / "Zero2Automated" | Former .gov Cybercrime | Threat Seeker Award
Shellter @shellterproject
5K Followers 2 Following AV Evasion Artware || Shellter v7.2 - Executable SHA256: ea07a52eca82b6383c7aa224652e55e0d1701f0779def736977ecadff819049c || Shellter Elite || Dev: @kyREcon
Caleb Queern @HttpSecHeaders
680 Followers 950 Following @KPMG_US | Co-author of Investments Unlimited | @losVerdesATX | BJJ black belt. Views expressed are my own.
trevrosen@bluesky @trevrosen
491 Followers 805 Following snark | supply chain sec @GitHub | @projectsigstore TSC | opinions all mine
Patrick @Beav_Patrick
1K Followers 2K Following U.S. Federal Platform Consultant @ Magnet Forensics. Marine Corps Cyber Aux team. Marine Corps Veteran. Former Detective 🕵️♂️ Opinions are my own 👨🏼💻
Megantron (@megan@inf... @megan_roddie
6K Followers 4K Following Detection Engineer. Co-Author, SANS FOR509. Author, Practical Detection Engineering. @HackersHealth CFO. Ammy Muay Thai fighter/coach. #ActuallyAutistic.
Puru Saxena @saxena_puru
380K Followers 136 Following Founder of research firm - AlphaTarget. Previously, Founder / Portfolio manager of money management firms in Hong Kong. No investment advice, do your own DD.
Richard Drinkwater @fftsf
128 Followers 914 Following
Mary Braden Murphy @marybraden_m
71 Followers 95 Following DFIR consultant • Cat enthusiast • First name: Mary Braden • Views are my own
Drew Luckenbaugh @drewmyles15
267 Followers 256 Following
Jenna McLaughlin @JennaMC_Laugh
36K Followers 4K Following @NPR cybersecurity correspondent. 🎤🤖 Was: @YahooNews, @CNN, @ForeignPolicy etc. Email: [email protected]
Noah Barsky @NoahBarsky
285 Followers 162 Following Graduate Business and Executive Education Faculty, Villanova University (USA) ◈ Cutter Consortium Fellow ◈ Forbes Contributor
Peter @vptrms
136 Followers 1K Following The quieter you become, the more you’re able to hear. #Incident response #dfir #infosec #Digital #forensics #sdr #entra id #conditional access
Abe Abrams @creightonabe
94 Followers 319 Following Marketing & Communications for Stephens, Tar Heels, History, Poly Econ: La Dolce Vita! Views my own. Re-tweets and follows NOT endorsements. DMs open (NTTAWWT)
Brittney Argirakis @brittneylynae
229 Followers 197 Following Digital Forensicator, Incident Responder, Fitness Enthusiast #DFIRfit | GCFA | GCFE | GASF | GREM
Gigs @ Shmoo @Gigs_Security
2K Followers 725 Following not aspiring to be humble▪️ #AdvancedPractices🦅 ▪️Thoughts are my own ▪️She|Her|Gigs
Dual Core @dualcoremusic
115K Followers 72 Following International hip hop duo. int eighty (@int0x80) & c64 (@c64music). Booking and commissions: [email protected]. Legacy blue check
Mike Williamson @forensicmike1
2K Followers 2K Following @MagnetForensics DFIR, RE, AI, C#, cloud stuff. Opinions are my own.
Shanna Niggans 🦄 @fancy_4n6
4K Followers 2K Following Digital forensics & incident response #DFIR + #CTI | Horse and Dog mum | Co-host @ComfyConAU | CISO @OpSysAU | RB/SCP for @BlackHatEvents & @BSidesMelbourne
Ashley Martin @ashleyAmartin
29 Followers 89 Following
Bex @4n6Bexaminer
1K Followers 785 Following Digital Forensics | Incident Response | Threat Hunting | @CuratedIntel Member. Thoughts are my own.
The Real STEM Sadie �... @stem_sadie
664 Followers 396 Following Cryptanalyst, DFIR, & OSINT | cat mom | meme-maker | blogger | public speaker | #Neurodiversity in #CyberSecurity | #HAE #PANDAS #FND | opinions==mine
Paula Wlos @PaulaWlos
79 Followers 175 Following Globe trotter, scuba diver, food lover, book reader, oenophile, and have-passport-will-travel kinda gal.
darkdefender @_darkdefender_
1K Followers 568 Following Your one and only source into the scandalous life of a DFIR consultant.
Jared Barnhart @bizzybarney
1K Followers 428 Following Father, forensic analyst, DI Specialist @Cellebrite. Opinions are mine.
ebrandwine @ebrandwine
2K Followers 112 Following Amateur father and husband. Breaker of end mills. Securifier of clouds @AWS. I’m full of opinions, but they’re just mine. BLM
Paco Hope @pacohope
2K Followers 1K Following follow me on https://t.co/SGEHX2mL7v #Security / #Privacy / #Cloud / Music / Cigars • Opinions are my own
DoubleBlak @BlakDouble
965 Followers 76 Following
Heather Adkins - Ꜻ ... @argvee
14K Followers 1K Following VP Security @Google, Co-Author "Building Secure and Reliable Systems" @r00t0wns, Medieval Historian
Josh Lemon @joshlemon
2K Followers 1K Following Chief DIFR at @SoteriaSec_io | @SANSInstitute Principal Instructor & Author | Digital Forensics & Incident Response geek
Chester Le Bron @123Le_Bron
479 Followers 813 Following Cybersecurity Threat Detection & Response | Cloud TDR | Basketball Coach | Opinions are my own | #BlackTechTwitter 🇵🇷
SoFi Investor Relatio... @SoFiIR
13K Followers 232 Following Official Account of SoFi Investor Relations.
Pierre Lidome @texaquila
392 Followers 143 FollowingTrends for United States
6.913 posts
24,9 B posts
77,1 B posts
57,2 B posts
86,7 B posts
32,2 B posts
51 B posts
19,6 B posts
16,4 B posts
8.646 posts
107 B posts
1.812 posts
16,3 B posts
7.946 posts
3.979 posts
19,7 B posts
69,1 B posts
11,3 B posts
58,5 B posts
You might like
Eric Zimmerman
@EricRZimmerman
19K Followers
Sarah Edwards 👩�...
@iamevltwin
20K Followers
Rob T. Lee
@robtlee
26K Followers
Heather Mahalik Barnh...
@HeatherMahalik
23K Followers
Mari Degrazia
@maridegrazia
8K Followers
SANS DFIR
@sansforensics
109K Followers
volatility
@volatility
22K Followers
Will Schroeder
@harmj0y
48K Followers
DFIR Training
@DFIRTraining
17K Followers
Phill Moore
@phillmoore
9K Followers
edskoudis
@edskoudis
62K Followers
Joshua Wright
@joswr1ght
27K Followers
Roberto Rodriguez �...
@Cyb3rWard0g
26K Followers
Jamie Levy🦉
@gleeda
10K Followers
Willi Ballenthin
@williballenthin
7K Followers